This throws an exception if the user accessing this URL doesn't have Administer permission. If the administrator configured no security mechanism, the ...
To that end, we work with Jenkins core and plugin developers ... link to the security advisory. Only Jenkins ... We publish an RSS feed for the jenkins.io/security/ ...
Missing: /url | Show results with:/url
This mode will also allow re-use of Unix groups for authorization. For example, Jenkins can be configured such that "Everyone in the developers group has ...
Many of the security options are enabled by default when passing the interactive setup wizard to ensure that Jenkins is secure. Others involve environment- ...
Missing: /url | Show results with:/url
Content-Security-Policy is the name of a HTTP response header that modern browsers use to enhance the security of the document (or web page).
Most users and developers will use these encryption keys indirectly via either the Secret API for encrypting generic secret data or through the credentials API.
Missing: /url | Show results with:/url
Access Control · Security Realm, which determines users and their passwords, as well as what groups the users belong to. · Authorization Strategy, which ...
Missing: /url | Show results with:/url
This attribute is not widely supported. default-src 'none' prohibits loading scripts, URLs for AJAX/XHR/WebSockets/EventSources, fonts, plugin objects, ...
If you want to extend the functionality of Jenkins by developing your own Jenkins plugins, please refer to the Extend Jenkins (developer documentation). What is ...
It can be enabled, disabled, and configured in Manage Jenkins » Security. The two supported modes (while enabled) are: Random: The TCP port is chosen at random ...