<!-- 
RSS generated by JIRA (1001.0.0-SNAPSHOT#100246-sha1:7a5c50119eb0633d306e14180817ddef5e80c75d) at Thu Feb 08 23:09:02 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary add field=key&field=summary to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>FOLIO Jira</title>
    <link>https://folio-org.atlassian.net</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>1001.0.0-SNAPSHOT</version>
        <build-number>100246</build-number>
        <build-date>07-02-2024</build-date>
    </build-info>

<item>
            <title>[FOLIO-885] Change Jenkins Security Realm to support GitHub authentication</title>
                <link>https://folio-org.atlassian.net/browse/FOLIO-885</link>
                <project id="10290" key="FOLIO">FOLIO</project>
                    <description>&lt;p&gt;Rather than relying on local Jenkins database for authentication,  configure support for authentication via GitHub OAUTH and configure project-based matrix authorization accordingly. This will make it easily for developers to run jobs in Jenkins without having to manage a separate set of credentials. &lt;/p&gt;</description>
                <environment></environment>
        <key id="80517">FOLIO-885</key>
            <summary>Change Jenkins Security Realm to support GitHub authentication</summary>
                <type id="10003" iconUrl="https://folio-org.atlassian.net/rest/api/2/universal_avatar/view/type/issuetype/avatar/10318?size=medium">Task</type>
                                            <priority id="10002" iconUrl="https://dev.folio.org/assets/jira-priority/jira-p3.svg">P3</priority>
                        <status id="6" iconUrl="https://folio-org.atlassian.net/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="green"/>
                                    <resolution id="10003">Done</resolution>
                                                        <assignee accountid="5f9abc1eb45b2e007453f423">John Malconian</assignee>
                                                                <reporter accountid="5f9abc1eb45b2e007453f423">John Malconian</reporter>
                                    <labels>
                            <label>ci</label>
                            <label>sprint24</label>
                            <label>sprint25</label>
                            <label>sprint26</label>
                            <label>sprint27</label>
                    </labels>
                <created>Fri, 6 Oct 2017 14:53:45 +0000</created>
                <updated>Mon, 12 Nov 2018 14:23:48 +0000</updated>
                            <resolved>Thu, 30 Nov 2017 18:50:15 +0000</resolved>
                                                                        <due></due>
                            <votes>0</votes>
                                    <watches>1</watches>
                                                    <timespent seconds="25200">7 hours</timespent>
                                <comments>
                                                            <comment id="190482" author="5f9abc1eb45b2e007453f423" created="Wed, 29 Nov 2017 19:27:53 +0000"  >&lt;p&gt;I&apos;ve changed the FOLIO security realm to use GitHub OAUTH authentication instead of maintaining a local user database in Jenkins.   This should simplify user management in Jenkins as well as access to job configuration, running builds, and so forth.   Authentication is based on the &quot;Github Committer Authorization Strategy&quot; which essentially means access to a job is dictated by your level of access to the GitHub repository in folio-org.    Hopefully this simplifies things and doesn&apos;t create additional problems.    &lt;/p&gt;</comment>
                                                            <comment id="190483" author="5f9abc1eb45b2e007453f423" created="Wed, 29 Nov 2017 20:18:46 +0000"  >&lt;p&gt;Looks like there are some issues with this authorization strategy.    As an authenticated non-admin user I am able to:&lt;/p&gt;

&lt;ul class=&quot;alternate&quot; type=&quot;square&quot;&gt;
	&lt;li&gt;Configure and run jobs that I shouldn&apos;t have access to.&lt;/li&gt;
	&lt;li&gt;Not able to access the Github folio-org folder at all (works for anonymous users).&lt;/li&gt;
&lt;/ul&gt;
</comment>
                                                            <comment id="190485" author="5f9abc1eb45b2e007453f423" created="Thu, 30 Nov 2017 18:50:15 +0000"  >&lt;p&gt;Switched to role-based authentication and tested various permissions using a test user.    Everything seems to be in order.  Closing. &lt;/p&gt;</comment>
                    </comments>
                    <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                <customfield id="customfield_10000" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummarycf">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10019" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0|hzy0jj:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10020" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_10025" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>[CHART] Time in Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>