RELEASED: Public: 2020-11-04
Ability to configure RBAC as Authorization Strategy using CasC (CTR-2633)
CloudBees Role-Based Access Control (RBAC) authorization strategy was not compatible with Configuration as Code (CasC).
With this update, CloudBees RBAC can be set as the authorization strategy with CasC, by adding the following configuration to the
jenkins: authorizationStrategy: "cloudBeesRoleBasedAccessControl"
CasC Groups creation does not work when authorization is pushed from operations center (CTR-2634)
Groups are created by Configuration as Code (CasC) for Controllers before CloudBees CI has fully started; however, CloudBees Role-Based Access Control (RBAC) plugin code includes logic that assumes CloudBees CI is fully started, which lead to a runtime exception.
With this fix, the CloudBees RBAC plugin uses a safer API to retrieve the RBAC configuration singleton, which works even when CloudBees CI has not fully started. Also, the new call is more efficient than the previous one, improving performance.
- Items, including but not limited to folders, shared clouds, shared agents, and shared configurations, defined within a folder do not have their RBAC configuration correctly migrated with version 22.214.171.124 (CTR-2740,CTR-2742)
A fix for this critical regression is included with version 126.96.36.199.