Jenkins用户配备
Jenkins用户配置
-
添加第一个用户
步骤是系统管理-启用安全-访问控制-Jenkins专有用户数据库-安全矩阵,如图
save后,在jenkins home(/var/lib/jenkins)目录下面生成config.xml文件
<useSecurity>true</useSecurity>
这个节点表示使用安全管理,也就是需要用户登录才能操作
<authorizationStrategy class="hudson.security.GlobalMatrixAuthorizationStrategy"> <permission>hudson.model.Computer.Configure:andy</permission> <permission>hudson.model.Computer.Connect:andy</permission> <permission>hudson.model.Computer.Create:andy</permission> <permission>hudson.model.Computer.Delete:andy</permission> <permission>hudson.model.Computer.Disconnect:andy</permission> <permission>hudson.model.Hudson.Administer:andy</permission> <permission>hudson.model.Hudson.ConfigureUpdateCenter:andy</permission> <permission>hudson.model.Hudson.Read:andy</permission> <permission>hudson.model.Hudson.RunScripts:andy</permission> <permission>hudson.model.Hudson.UploadPlugins:andy</permission> <permission>hudson.model.Item.Build:andy</permission> <permission>hudson.model.Item.Cancel:andy</permission> <permission>hudson.model.Item.Configure:andy</permission> <permission>hudson.model.Item.Create:andy</permission> <permission>hudson.model.Item.Delete:andy</permission> <permission>hudson.model.Item.Discover:andy</permission> <permission>hudson.model.Item.Read:andy</permission> <permission>hudson.model.Item.Workspace:andy</permission> <permission>hudson.model.View.Configure:andy</permission> <permission>hudson.model.View.Create:andy</permission> <permission>hudson.model.View.Delete:andy</permission> <permission>hudson.model.View.Read:andy</permission> </authorizationStrategy>
这个节点的配置信息是andy用户的相关权限
用刚才添加的用户进行注册
sign up后,在jenkins home(/var/lib/jenkins)目录下面生成文件夹users,users目录下面有andy用户的信息
-
安全失效的方法
方法一
<useSecurity>true</useSecurity>改成
<useSecurity>false</useSecurity>
方法二
删除jenkins home(/var/lib/jenkins)目录下面的config.xml文件和users整个文件夹
sudo rm -r config.xml sudo rm -r users