RELEASED: Public: 2020-11-04
New features
-
Ability to configure RBAC as Authorization Strategy using CasC (CTR-2633)
CloudBees Role-Based Access Control (RBAC) authorization strategy was not compatible with Configuration as Code (CasC).
With this update, CloudBees RBAC can be set as the authorization strategy with CasC, by adding the following configuration to the
jenkins.yamlfile:jenkins: authorizationStrategy: "cloudBeesRoleBasedAccessControl"
Resolved issues
-
CasC Groups creation does not work when authorization is pushed from operations center (CTR-2634)
Groups are created by Configuration as Code before CloudBees CI has fully started; however, CloudBees Role-Based Access Control (RBAC) plugin code includes logic that assumes CloudBees CI is fully started, which lead to a runtime exception.
With this fix, the CloudBees RBAC plugin uses a safer API to retrieve the RBAC configuration singleton, which works even when CloudBees CI has not fully started. Also, the new call is more efficient than the previous one, improving performance.
Known issues
- Items, including but not limited to folders, shared clouds, shared agents, and shared configurations, defined within a folder do not have their RBAC configuration correctly migrated with version 2.249.3.1 (CTR-2740,CTR-2742)
-
A fix for this critical regression is included with version 2.249.3.2.