Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-46540

"Open Blue Ocean" button disappers when "Block inheritance of global authorization matrix" is set in a folder

    Details

    • Similar Issues:

      Description

      We create a root folder and activate the "Enable project-based security".

      "Open Blue Ocean" button is available at the root of our jenkins, but it disappears
      when you're in that folder where "Block inheritance of global authorization matrix" is set.

        Attachments

          Issue Links

            Activity

            Hide
            jglick Jesse Glick added a comment -

            You need Overall/Read to do anything except use an UnprotectedRootAction, so explicitly checking it makes little sense. Anyway, I am not sure why matrix-auth would be blocking inheritance of Overall/* permissions, but it should not matter since they should only ever be checked on Jenkins to begin with. (I used to want to actually enforce PermissionScope at runtime, but there are some corner cases that would be tricky to fix compatibly.) So agreed that just removing that line from action.jelly should suffice.

            Show
            jglick Jesse Glick added a comment - You need Overall/Read to do anything except use an UnprotectedRootAction , so explicitly checking it makes little sense. Anyway, I am not sure why matrix-auth would be blocking inheritance of Overall/* permissions, but it should not matter since they should only ever be checked on Jenkins to begin with. (I used to want to actually enforce PermissionScope at runtime, but there are some corner cases that would be tricky to fix compatibly.) So agreed that just removing that line from action.jelly should suffice.
            Hide
            danielbeck Daniel Beck added a comment -
            Show
            danielbeck Daniel Beck added a comment - FYI I asked about this in https://groups.google.com/d/msg/jenkinsci-dev/kg4UVxJ4gQQ/os-aPg85CAAJ
            Hide
            presslej James Pressley added a comment -

            Is there any movement on this? Users are complaining the blue ocean button is not there. I have resorted to inheriting the permissions and adding but this is not ideal

            Show
            presslej James Pressley added a comment - Is there any movement on this? Users are complaining the blue ocean button is not there. I have resorted to inheriting the permissions and adding but this is not ideal
            Hide
            hughsaunders Hugh Saunders added a comment -

            This is also an issue with the github-oauth plugin. I'm going to try Daniel Beck's suggestion.

            Show
            hughsaunders Hugh Saunders added a comment - This is also an issue with the github-oauth plugin. I'm going to try Daniel Beck 's suggestion.
            Show
            hughsaunders Hugh Saunders added a comment - Pull Request: https://github.com/jenkinsci/blueocean-plugin/pull/2086

              People

              • Assignee:
                Unassigned
                Reporter:
                thitho_007 Thierry Tholle
              • Votes:
                3 Vote for this issue
                Watchers:
                11 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: