From Fedora Project Wiki

Line 8: Line 8:
 
# check "Enable security"
 
# check "Enable security"
 
# select "Jenkins’ own user database" in "Security Realm" section
 
# select "Jenkins’ own user database" in "Security Realm" section
#* "Allow users to sign up" should be selected automatically
+
#* "Allow users to sign up" should be selected by default
 
# select "Logged-in users can do anything" from "Authorization" section
 
# select "Logged-in users can do anything" from "Authorization" section
 
# click "Save"
 
# click "Save"
Line 22: Line 22:
 
# go to http://localhost:8080/configureSecurity/ and uncheck "Enable security"
 
# go to http://localhost:8080/configureSecurity/ and uncheck "Enable security"
 
# click save
 
# click save
 +
#* security should be disabled now
 
|results=
 
|results=
 
# user shouldn't encounter any error messages or stacktraces, everything should work as described
 
# user shouldn't encounter any error messages or stacktraces, everything should work as described
 
}}
 
}}

Revision as of 05:39, 30 September 2014

Description

Securing Jenkins.

Setup

  1. Ensure that Jenkins is up and running

How to test

  1. go to http://localhost:8080/configureSecurity/
  2. check "Enable security"
  3. select "Jenkins’ own user database" in "Security Realm" section
    • "Allow users to sign up" should be selected by default
  4. select "Logged-in users can do anything" from "Authorization" section
  5. click "Save"
    • you should be prompted to enter you username and password
  6. click on "Create an account"
  7. fill in all fields and click "Sign up"
    • you should be now logged in
  8. click "log out" in upper right corner
  9. go to http://localhost:8080/manage
    • you should be prompted for your username and password, as this page is not accessible to public if security is enabled
  10. enter your credentials
    • you should be successfully logged in
  11. go to http://localhost:8080/configureSecurity/ and uncheck "Enable security"
  12. click save
    • security should be disabled now

Expected Results

  1. user shouldn't encounter any error messages or stacktraces, everything should work as described