Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[FIX JENKINS-40813] Better message on 'Enable security' option
- Loading branch information
1 parent
f2a46b8
commit 81c0f46
Showing
1 changed file
with
8 additions
and
13 deletions.
There are no files selected for viewing
21 changes: 8 additions & 13 deletions
21
core/src/main/resources/hudson/security/GlobalSecurityConfiguration/help-useSecurity.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,20 +1,15 @@ | ||
<div> | ||
If enabled, you have to login with a username and a password that has the "admin" role | ||
before changing the configuration or running a new build (look for the "login" link | ||
at the top right portion of the page). | ||
Configuration of user accounts is specific to the web container you are using. | ||
(For example, in Tomcat, by default, it looks for <tt>$TOMCAT_HOME/conf/tomcat-users.xml</tt>) | ||
|
||
<p> | ||
If you are using Jenkins in an intranet (or other "trusted" environment), it's usually | ||
desirable to leave this checkbox off, so that each project developer can configure their own | ||
project without bothering you. | ||
Enabling security allows configuring authentication (how people can identify themselves) and authorization (what | ||
permissions they get). | ||
</p> | ||
|
||
<p> | ||
If you are exposing Jenkins to the internet, you must turn this on. Jenkins launches | ||
processes, so insecure Jenkins is a sure way of being hacked. | ||
A number of options are built in. Please note that granting significant permissions to anonymous users, or allowing | ||
users to sign up and granting permissions to all authenticated users, does not actually increase security. | ||
</p> | ||
|
||
<p> | ||
For more information about security and Jenkins, see | ||
<a href="https://jenkins.io/redirect/securing-jenkins">this document</a>. | ||
For more information about security and Jenkins, see | ||
<a href="https://jenkins.io/redirect/securing-jenkins">this document</a>. | ||
</div> |