[JIRA] (JENKINS-61456) Allow Jenkins.MANAGE user to access "System Information"

7 views
Skip to first unread message

ealvarez@cloudbees.com (JIRA)

unread,
Mar 12, 2020, 8:26:02 AM3/12/20
to jenkinsc...@googlegroups.com
Esther Álvarez Feijoo created an issue
 
Jenkins / New Feature JENKINS-61456
Allow Jenkins.MANAGE user to access "System Information"
Issue Type: New Feature New Feature
Assignee: Unassigned
Components: core
Created: 2020-03-12 12:25
Priority: Minor Minor
Reporter: Esther Álvarez Feijoo

Jenkins.MANAGE permission allows accessing "System Information"

Thread dumps and environment variables should still only be shown to a user with Jenkins.ADMINISTER
Add Comment Add Comment
 
This message was sent by Atlassian Jira (v7.13.12#713012-sha1:6e07c38)
Atlassian logo

ealvarez@cloudbees.com (JIRA)

unread,
Mar 12, 2020, 2:31:03 PM3/12/20
to jenkinsc...@googlegroups.com
Change By: Esther Álvarez Feijoo
Assignee: Esther Álvarez Feijoo

ealvarez@cloudbees.com (JIRA)

unread,
Mar 12, 2020, 2:31:03 PM3/12/20
to jenkinsc...@googlegroups.com
Status: Open In Progress

ealvarez@cloudbees.com (JIRA)

unread,
Mar 12, 2020, 2:31:04 PM3/12/20
to jenkinsc...@googlegroups.com
Esther Álvarez Feijoo updated an issue
Jenkins.MANAGE permission allows accessing "System Information"

Thread dumps and environment variables should still only be shown to a user with Jenkins.ADMINISTER because they can contain sensitive data. One common example is running Jenkins in a container, where the common way of providing secrets is by using environment variables.

dbeck@cloudbees.com (JIRA)

unread,
Mar 23, 2020, 4:48:02 AM3/23/20
to jenkinsc...@googlegroups.com
Daniel Beck closed an issue as Fixed
Change By: Daniel Beck
Status: In Progress Closed
Resolution: Fixed
Released As: Jenkins 2.227
Reply all
Reply to author
Forward
0 new messages