[JENKINS-53364] github-oauth-plugin -Simpler 403 page

Type: Improvement
Resolution: Duplicate
Priority: Minor
Component/s: github-oauth-plugin
Labels:
None

Similar Issues:
Powered by SuggestiMate

Show

When a GitHub user outside an authorized organization log in into Jenkins, his access is denied but he has still a view on the Jenkins web UI (with no rights).

A simple 403 page without any Jenkins menu display would enhance the feeling of a strong "access denied".

I make this request because this was a remark from an external security audit of our tools. The idea is to reduce the attack surface.

duplicates

JENKINS-46962 Github Users Outside Organisation get an authenticated user in Jenkins.

Open

There are no comments yet on this issue.

Assignee:: Sam Gleske

Reporter:: Arthur Clément

Votes:: 1 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2018-08-31 10:17

Updated:: 2019-08-10 14:33

Resolved:: 2019-08-10 14:33

Jenkins

Details

Description

Attachments

Issue Links

Activity

People

Dates