On 06.10.2015, at 18:52, Brian Ray <[email protected]> wrote: > Not to drag the thread off-topic, but could you elaborate on any security > issues with Job DSL? I experimented with it a while back, and CloudBees is > going to demo Job Templates to my shop in the near future, but is there > something that makes Job DSL inherently less secure-able than the latter? > > For example, couldn't you just use project-based security to lock down the > Job DSL job that creates and updates the spawned jobs?
The problem is that a user with Job/Configure on a single freestyle job can add a Job DSL build step there, and wreaks havoc on your instance. -- You received this message because you are subscribed to the Google Groups "Jenkins Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/4279C62B-A60D-4EDD-92F1-E11F07BF66DA%40beckweb.net. For more options, visit https://groups.google.com/d/optout.
