Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-67173

Remove agent-to-controller kill switch, FilePath support for a2c, etc.

    • Icon: Epic Epic
    • Resolution: Fixed
    • Icon: Major Major
    • core
    • Agent-to-controller security simplification
    • 2.326

      Followup to https://www.jenkins.io/security/advisory/2021-11-04/ :

      • Remove the ability to disable agent-to-controller access control
      • Remove the customizable callable allowlist
      • Remove the capability for FilePath methods to operate in the agent-to-controller direction
        • Remove the customizable file path filter allowlist supporting this
      • Deprecate SlaveToMasterFileCallable

       

          [JENKINS-67173] Remove agent-to-controller kill switch, FilePath support for a2c, etc.

          Daniel Beck added a comment -

          Daniel Beck added a comment - Proposed JEP: https://github.com/jenkinsci/jep/pull/381

          Daniel Beck added a comment - - edited

          The core changes were delivered in Jenkins 2.326. Some plugins still need adapting, but that's up to their maintainers.

          Daniel Beck added a comment - - edited The core changes were delivered in Jenkins 2.326. Some plugins still need adapting, but that's up to their maintainers.

            danielbeck Daniel Beck
            danielbeck Daniel Beck
            Votes:
            1 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: