-
Bug
-
Resolution: Duplicate
-
Critical
-
Jenkins core: 1.625.3, 2.32.1
Multijob plugin: 1.21, 1.23
We got AD authentication enabled on all of our Jenkins servers and have limited the ability to launch jobs to only logged-in users. Anon has only read, extended read and workspace job-related permissions. However, the "Resume build" link is still available and functioning as normal when an unauthenticated user accesses the specific job. This is a critical issue for us, as it compromises job security settings
- duplicates
-
JENKINS-36333 Resume build button allows anyone to rebuild failed build
- Resolved