[semi-sales-pitch-alert] To my knowledge, the only one that supports this the the non-free RBAC plugin in Jenkins Enterprise by CloudBees.
I wrote most of the plugin, so I know it can handle whatever auth and permission scheme you care to throw at it. The docs are here: http://jenkins-enterprise.cloudbees.com/docs/user-guide-bundle/rbac.html There are also some webinars on the CloudBees website, I think the most recent was run by Jesse Glick (saving me from working late ;-) ) Of course the down side is that you need a Jenkins Enterprise by CloudBees license to use it. If you want to try it there are two ways: 1. Just download Jenkins Enterprise and use it in place of your normal Jenkins.war Or 2. Install the CloudBees Free Enterprise plugins plugin, that will add the CloudBees update centre into your instance. Once you ave installed the free license you can then install the RBAC plugin... Which will then frce you to upgrade to an enterprise license. In either case you just request an evaluation license which is good for at least 30 days... At the end of the 30 days you will have a screen that allows removing the plugins that require a license from your system if you decide not to purchase. [/semi-sales-pitch-alert] Hope that helps -Stephen On Thursday, 28 March 2013, Ken Beal wrote: > Hi,**** > > ** ** > > We want to restrict the ability to run jobs. All the security modules > I’ve looked at are “additive”, meaning permissions granted are only added, > never removed. So it seems like doing what we want to do is not possible. > Has anyone needed this, and if so, were you able to achieve it?**** > > ** ** > > In our environment, we have several jobs that are configured to run in > succession. These update a database, and gather data at the end. We want > these to *only* run as part of the CI flow; if someone runs one of the > test jobs independently, it can corrupt the data we’re saving. So the > “quick fix” was to just disable the ability to run those jobs.**** > > ** ** > > I’ve looked at the “Project-based Matrix Authorization Strategy” option, > as well as the “Role Strategy Plugin”. Are there others available that can > do what we want?**** > > ** ** > > Another way of describing it is we want to have security settings similar > to Windows, where each permission has both Allow and Deny checkboxes:**** > > ** ** > > **** > > ** ** > > Thanks,**** > > Ken**** > > ** ** > > -- > You received this message because you are subscribed to the Google Groups > "Jenkins Users" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] <javascript:_e({}, > 'cvml', 'jenkinsci-users%[email protected]');>. > For more options, visit https://groups.google.com/groups/opt_out. > > > -- Sent from my phone -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
<<image001.png>>
