[JIRA] (JENKINS-58647) GitHub Authorization Setting Caution Message

3 views
Skip to first unread message

joshua.dahlberg@detroitlabs.com (JIRA)

unread,
Jul 24, 2019, 1:22:02 PM7/24/19
to jenkinsc...@googlegroups.com
Joshua Dahlberg created an issue
 
Jenkins / Improvement JENKINS-58647
GitHub Authorization Setting Caution Message
Issue Type: Improvement Improvement
Assignee: Kirill Merkushev
Attachments: Screen Shot 2019-07-22 at 8.12.05 AM.png
Components: github-plugin
Created: 2019-07-24 17:21
Priority: Major Major
Reporter: Joshua Dahlberg

Jenkins' GitHub authorization settings can be configured the following ways:

  1. Allow authenticated GutHub users access to Jenkins (by checking the box)
  2. Disallow authenticated GitHub users from accessing the Jenkins instsance

If option #1 is enabled, I'd expect a caution/warning message to appear describing the implications of this change, i.e. anyone with a GitHub account will be granted access the the Jenkins instance.

 

Today, checking that box potentially exposes code to people outside an organization and it's an easy mistake to make between 'authenticated' and 'authorized'.
Add Comment Add Comment
 
This message was sent by Atlassian Jira (v7.11.2#711002-sha1:fdc329d)
Reply all
Reply to author
Forward
0 new messages