On Mon, Oct 1, 2018 at 6:31 PM, Seth Kenlon <sken...@redhat.com> wrote:
> I'm new to OpenShift use, and still getting my head around roles and > permissions. I've got a test instance, and I'm trying to add a role to > provide a Jenkins user access to Read, Job Build, and Job Cancel. I don't > want the Jenkins user to have access to any more than that. > > Is that a possible combination of permissions to create through the GUI? > it's probably possible if you use jenkins to manage your authorization(Jenkins offers pretty fine grained user permission control). If you use the openshift integration(in which your jenkins permissions are determined by your permissions within openshift) it's not going to be possible because we basically match a few pretty chunky roles (view, edit, admin) to jenkins permissions (ie if you can edit a project in openshift, you can do edit-like things in the jenkins instance running in that project): https://github.com/openshift/jenkins-openshift-login-plugin#openshift-role-to-jenkins-permission-mapping you can find some more details about this here: https://docs.okd.io/latest/using_images/other_images/jenkins.html#jenkins-authentication > > > -- > Seth Kenlon > Senior Technical Editor > Red Hat > sken...@redhat.com T: +61-735-147125 M: +64-2040-619719 IM: > skenlon > F97393A5 > redhat.com | TRIED. TESTED. TRUSTED. | redhat.com/trusted > > > _______________________________________________ > users mailing list > users@lists.openshift.redhat.com > http://lists.openshift.redhat.com/openshiftmm/listinfo/users > > -- Ben Parees | OpenShift
_______________________________________________ users mailing list users@lists.openshift.redhat.com http://lists.openshift.redhat.com/openshiftmm/listinfo/users