jenkins是什么不用说了,可以百度,然后怎么加项目,和别的工具集成什么的,因为我也是从别人手里接过来的jenkins,直接说主题了。因为每次都是我来发布,而且发布频率还蛮高的,有时候请假因为这个还得背上电脑,不能形成没必要的单点嘛,所以。

  1. 登录

    1. 系统管理----Configure Global Security----(授权策略)Role-Based Strategy。如下图:

wKiom1ebLcTRbHibAADr6qKWcM4866.png-wh_50

保存之后,回到系统管理的界面,出现了一个Manage and Assign Roles的一个小黄锁。点击进入。里边Manage Roles和Assign Roles,一个是jenkins本身权限和项目权限相关,一个是对应角色相关。还有一个Role-Strategy Macros Info,没有用到。先来一张图吧!

wKiom1ebMJuy72R8AAIkpvjxflk626.png-wh_50

关于上图Global roles里,我只创建了三种权限角色,create和read和admin。下边Project roles对应job里的权限除了Delete都有选。再来一张图吧!

wKioL1ebM2jB6nhfAAJXI1jgoWo295.png-wh_50

到此就添加成功,可以尝试登陆查看,结果图,算了不截图了,不能直接复制截图,还得上传,就是我的账号登陆,不会看到Project roles里没选的项目。至于更细化权限,我没有去测试,有兴趣的童鞋可以试一下。

ps:

  1. 每个用户的配置在$JENKINS_HOME/users/用户名/config.xml

  2. 如果在调整权限出现失误无法登陆时:

    1. 可删除对应账户的配置

    2. 修改$Jenkins_home/config.xml文件:<useSecurity>false</useSecurity>

    3. 删除authorizationStrategy、securityRealm节点

    4. 重新启动Jenkins

  3. 还有一个方法,修改$Jenkins_home/config.xml文件,修改授权方式为系统自带的安全矩阵方式,authorizationStrategy节点class属性修改为hudson.security.GlobalMatrixAuthorizationStrategy

    1. 配置示例如下,该示例是分配给admin用户所有权限

<useSecurity>true</useSecurity>
    <authorizationStrategy class="hudson.security.GlobalMatrixAuthorizationStrategy">
      <permission>hudson.model.Computer.Configure:admin</permission>
      <permission>hudson.model.Computer.Connect:admin</permission>
      <permission>hudson.model.Computer.Create:admin</permission>
      <permission>hudson.model.Computer.Delete:admin</permission>
      <permission>hudson.model.Computer.Disconnect:admin</permission>
      <permission>hudson.model.Hudson.Administer:admin</permission>
      <permission>hudson.model.Hudson.Read:admin</permission>
      <permission>hudson.model.Hudson.Read:anonymous</permission>
      <permission>hudson.model.Hudson.RunScripts:admin</permission>
      <permission>hudson.model.Item.Build:admin</permission>
      <permission>hudson.model.Item.Cancel:admin</permission>
      <permission>hudson.model.Item.Configure:admin</permission>
      <permission>hudson.model.Item.Create:admin</permission>
      <permission>hudson.model.Item.Delete:admin</permission>
      <permission>hudson.model.Item.Discover:admin</permission>
      <permission>hudson.model.Item.Read:admin</permission>
      <permission>hudson.model.Item.Workspace:admin</permission>
      <permission>hudson.model.Run.Delete:admin</permission>
      <permission>hudson.model.Run.Update:admin</permission>
      <permission>hudson.model.View.Configure:admin</permission>
      <permission>hudson.model.View.Create:admin</permission>
      <permission>hudson.model.View.Delete:admin</permission>
      <permission>hudson.model.View.Read:admin</permission>
      <permission>hudson.scm.SCM.Tag:admin</permission>
    </authorizationStrategy>
    <securityRealm class="hudson.security.HudsonPrivateSecurityRealm">
      <disableSignup>false</disableSignup>
      <enableCaptcha>false</enableCaptcha>
    </securityRealm>

  • 重新启动Jenkins。



参考链接:

http://my.oschina.net/boltwu/blog/404893?p={{currentPage+1}}

http://www.cnblogs.com/davidwang456/p/3701972.html