Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-52172

jenkins slave authentication method change requires admin approval

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved (View Workflow)
    • Priority: Minor
    • Resolution: Not A Defect
    • Component/s: core
    • Labels:
      None
    • Environment:
      centos 7 and jenkins version is 2.84
    • Similar Issues:

      Description

      Every time an user tries to update a slave authentication method he is showed the attached message. This means an admin must approve his change (through "Manage Jenkins" > "In-process Script Approval") in order for it to be applied.
      I am looking for a way to remove this.

        Attachments

          Activity

          Hide
          oleg_nenashev Oleg Nenashev added a comment -

          What is "slave authentication method"?
          The script approval may be required if you use the "Launch agent by executing a shell command" launcher

          Show
          oleg_nenashev Oleg Nenashev added a comment - What is "slave authentication method"? The script approval may be required if you use the "Launch agent by executing a shell command" launcher
          Hide
          priyankapanda348 Priyanka Panda added a comment -

          yes the slave launch method is "Launch Agent via command on master"
          Is there a way to disable/remove this "admin approval" from jenkins?

          Show
          priyankapanda348 Priyanka Panda added a comment - yes the slave launch method is "Launch Agent via command on master" Is there a way to disable/remove this "admin approval" from jenkins?
          Hide
          oleg_nenashev Oleg Nenashev added a comment -

          Such script approval was a security fix in Jenkins 2.73.2 (SECURITY-478, https://jenkins.io/security/advisory/2017-10-11/#arbitrary-shell-command-execution-on-master-by-users-with-agent-related-permissions), there is no plans to revert it.

          If you are really sure, you can use https://plugins.jenkins.io/permissive-script-security to disable script approval.

          Show
          oleg_nenashev Oleg Nenashev added a comment - Such script approval was a security fix in Jenkins 2.73.2 (SECURITY-478, https://jenkins.io/security/advisory/2017-10-11/#arbitrary-shell-command-execution-on-master-by-users-with-agent-related-permissions ), there is no plans to revert it. If you are really sure, you can use https://plugins.jenkins.io/permissive-script-security to disable script approval.
          Hide
          priyankapanda348 Priyanka Panda added a comment -

          okay..thank yor the info

          Show
          priyankapanda348 Priyanka Panda added a comment - okay..thank yor the info
          Hide
          oleg_nenashev Oleg Nenashev added a comment -

          Thanks for the confirmation! Closing as "Not a defect" then.
          If you want to propose any improvements to the current implementation, please feel free to create follow-up issues.

          Show
          oleg_nenashev Oleg Nenashev added a comment - Thanks for the confirmation! Closing as "Not a defect" then. If you want to propose any improvements to the current implementation, please feel free to create follow-up issues.

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            priyankapanda348 Priyanka Panda
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: