Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-50032

Jobs can be triggered with only Job/Read and Job/Configure

XMLWordPrintable

      • Create a job and assign an Authentication Token under Trigger builds remotely (e.g., from scripts)
      • Create a user and only assign Job/Read and Job/Configure permission for this job.
      • Navigate to the job as the newly created user, retrieve the build URL which contains the token.
      • The user cannot build this job via the UI.
      • Retrive the user's API token ($JENKINS_URL/users/$USERNAME)
      • Go to command line and use the following curl command: curl -X POST $JENKINS_URL/job/$JOB_NAME/build?token\=$AUTHENTICATION_TOKEN -u $USER_NAME:$API_TOKEN
      • The job will be now be built.

          [JENKINS-50032] Jobs can be triggered with only Job/Read and Job/Configure

          Joshua Shinn created issue -
          Joshua Shinn made changes -
          Summary Original: Jobs can be triggered with only Job/Read New: Jobs can be triggered with only Job/Read and Job/Configure
          Joshua Shinn made changes -
          Environment Original: Parameterized trigger plugin 2.35.2,
          CloudBees Role-Based Access Control Plugin 5.9           		New: Parameterized trigger plugin 2.35.2

            Unassigned Unassigned
            joshshinn Joshua Shinn
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: