Authentication not required for /project end-point #282
Labels
bug
For changelog: Minor bug. Will be listed after features
Comments
|
I only recently became aware of the fact that we are not authenticating the build trigger at all. Resolving this is a high priority, but doing so is going to break every existing installation of the plugin. I expect a lot of tears. |
exceed-alae
pushed a commit
to exceed-alae/gitlab-plugin
that referenced
this issue
May 20, 2022
Correct typo 'conext' -> 'context'
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I can add
https://jenkins.example.com/project/website/olcfas a web hook and builds get triggered when a webhook event occurs. As you can see no auth credentials are used.I have tried this using the following authorization strategies.
Matrix-based securityandLogged-in users can do anything.Is this a bug or designed behavior? If it is designed behavior I'll open a ticket with gitlab as the Username and Password field should be remove from the JenkinsCI Service configuration page.
The text was updated successfully, but these errors were encountered: