Filter Plugin updates / Sign update information
25 views
Skip to first unread message
steffen....@1und1.de
Sep 14, 2015, 9:09:13 AM9/14/15
to Jenkins Users
Hi everyone!
I want to filter "malicious" plugin updates from the update center so no one can install them accidentially.
Just stripping the update information from the JSON doesn't work because the output is signed.
Is there another way to filter updates?
If not, is there a documentation about how to sign the output so Jenkins would accept it?
Thanks in advance
Steffen
Daniel Beck
Sep 14, 2015, 10:01:59 AM9/14/15
to jenkins...@googlegroups.com
You could look at how Juseppe signs its update site data:
https://github.com/yandex-qatools/juseppe/blob/master/src/main/java/ru/lanwen/jenkins/juseppe/gen/Signer.java
> --
> You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-use...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/0b90218c-c4b7-49ae-8a9b-c509ab150211%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
https://github.com/yandex-qatools/juseppe/blob/master/src/main/java/ru/lanwen/jenkins/juseppe/gen/Signer.java
> You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-use...@googlegroups.com.
> To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/0b90218c-c4b7-49ae-8a9b-c509ab150211%40googlegroups.com.
> For more options, visit https://groups.google.com/d/optout.
Jovan Jevric
Sep 21, 2015, 1:23:56 AM9/21/15
to jenkins...@googlegroups.com
Hi Steffen,
I've run into simliar issue.
That's how I've solved it.
cheers
Reply all
Reply to author
Forward
0 new messages