jenkins.model.Jenkins.setSecurityRealm()方法的使用及代码示例

x33g5p2x  于2022-01-21 转载在 其他  
字(14.1k)|赞(0)|评价(0)|浏览(130)

本文整理了Java中jenkins.model.Jenkins.setSecurityRealm()方法的一些代码示例,展示了Jenkins.setSecurityRealm()的具体用法。这些代码示例主要来源于Github/Stackoverflow/Maven等平台,是从一些精选项目中提取出来的代码,具有较强的参考意义,能在一定程度帮忙到你。Jenkins.setSecurityRealm()方法的具体详情如下:
包路径:jenkins.model.Jenkins
类名称:Jenkins
方法名:setSecurityRealm

Jenkins.setSecurityRealm介绍

暂无

代码示例

代码示例来源:origin: jenkinsci/jenkins

public void disableSecurity() {
  useSecurity = null;
  setSecurityRealm(SecurityRealm.NO_AUTHENTICATION);
  authorizationStrategy = AuthorizationStrategy.UNSECURED;
}

代码示例来源:origin: jenkinsci/jenkins

setSecurityRealm(SecurityRealm.NO_AUTHENTICATION);
} else {
      setSecurityRealm(SecurityRealm.NO_AUTHENTICATION);
    else
      setSecurityRealm(new LegacySecurityRealm());
  } else {
    setSecurityRealm(securityRealm);

代码示例来源:origin: jenkinsci/jenkins

try (BulkChange bc = new BulkChange(jenkins)) {
  HudsonPrivateSecurityRealm securityRealm = new HudsonPrivateSecurityRealm(false, false, null);
  jenkins.setSecurityRealm(securityRealm);
  String randomUUID = UUID.randomUUID().toString().replace("-", "").toLowerCase(Locale.ENGLISH);

代码示例来源:origin: jenkinsci/jenkins

JSONObject security = json.getJSONObject("useSecurity");
  j.setDisableRememberMe(security.optBoolean("disableRememberMe", false));
  j.setSecurityRealm(SecurityRealm.all().newInstanceFromRadioList(security, "realm"));
  j.setAuthorizationStrategy(AuthorizationStrategy.all().newInstanceFromRadioList(security, "authorization"));    
} else {

代码示例来源:origin: org.jenkins-ci.main/jenkins-core

public void disableSecurity() {
  useSecurity = null;
  setSecurityRealm(SecurityRealm.NO_AUTHENTICATION);
  authorizationStrategy = AuthorizationStrategy.UNSECURED;
}

代码示例来源:origin: jenkinsci/jenkins-test-harness

private void restoreAuth() {
  if (originalSecurityRealm != null) {
    rule.jenkins.setSecurityRealm(originalSecurityRealm);
    originalSecurityRealm = null;
  }
  if (originalAuthorizationStrategy != null) {
    rule.jenkins.setAuthorizationStrategy(originalAuthorizationStrategy);
    originalAuthorizationStrategy = null;
  }
  if (originalSecurityContext != null) {
    SecurityContextHolder.setContext(originalSecurityContext);
    originalSecurityContext = null;
  }
}

代码示例来源:origin: jenkinsci/gerrit-trigger-plugin

/**
 * Unlock the instance.
 * @param j JenkinsRule.
 * @throws Exception throw if so.
 */
public static void unLock(JenkinsRule j) throws Exception {
  j.getInstance().setSecurityRealm(SecurityRealm.NO_AUTHENTICATION);
}

代码示例来源:origin: jenkinsci/jenkins-test-harness

private void setAuth() {
  if (permissions.isEmpty()) return;
  JenkinsRule.DummySecurityRealm realm = rule.createDummySecurityRealm();
  realm.addGroups(username, "group");
  originalSecurityRealm = rule.jenkins.getSecurityRealm();
  rule.jenkins.setSecurityRealm(realm);
  originalAuthorizationStrategy = rule.jenkins.getAuthorizationStrategy();
  rule.jenkins.setAuthorizationStrategy(new GrantPermissions(username, permissions));
  command.setTransportAuth(user().impersonate());
  // Otherwise it is SYSTEM, which would be relevant for a command overriding main:
  originalSecurityContext = ACL.impersonate(Jenkins.ANONYMOUS);
}

代码示例来源:origin: jenkinsci/mercurial-plugin

@Test public void doFillCredentialsIdItemsWithoutJobWhenAdmin() throws Exception {
  r.jenkins.setSecurityRealm(r.createDummySecurityRealm());
  ProjectMatrixAuthorizationStrategy as = new ProjectMatrixAuthorizationStrategy();
  as.add(Jenkins.ADMINISTER, "alice");
  r.jenkins.setAuthorizationStrategy(as);
  final UsernamePasswordCredentialsImpl c = new UsernamePasswordCredentialsImpl(CredentialsScope.GLOBAL, null, "test", "bob", "s3cr3t");
  CredentialsProvider.lookupStores(r.jenkins).iterator().next().addCredentials(Domain.global(), c);
  ACL.impersonate(User.get("alice").impersonate(), new Runnable() {
    @Override public void run() {
      ListBoxModel options = r.jenkins.getDescriptorByType(MercurialSCM.DescriptorImpl.class).doFillCredentialsIdItems(null, "http://nowhere.net/");
      assertEquals(CredentialsNameProvider.name(c), options.get(1).name);
    }
  });
}

代码示例来源:origin: jenkinsci/gerrit-trigger-plugin

/**
 * Lock down the instance.
 * @param j JenkinsRule.
 * @throws Exception throw if so.
 */
public static void lockDown(JenkinsRule j) throws Exception {
  SecurityRealm securityRealm = j.createDummySecurityRealm();
  j.getInstance().setSecurityRealm(securityRealm);
  j.getInstance().setAuthorizationStrategy(
      new MockAuthorizationStrategy().grant(Jenkins.READ).everywhere().toAuthenticated());
}

代码示例来源:origin: jenkinsci/mercurial-plugin

@Issue("SECURITY-158")
@Test public void doFillCredentialsIdItems() throws Exception {
  r.jenkins.setSecurityRealm(r.createDummySecurityRealm());
  ProjectMatrixAuthorizationStrategy as = new ProjectMatrixAuthorizationStrategy();
  as.add(Jenkins.READ, "alice");
  as.add(Jenkins.READ, "bob");
  r.jenkins.setAuthorizationStrategy(as);
  FreeStyleProject p1 = r.createFreeStyleProject("p1");
  FreeStyleProject p2 = r.createFreeStyleProject("p2");
  p2.addProperty(new AuthorizationMatrixProperty(Collections.singletonMap(Item.CONFIGURE, Collections.singleton("bob"))));
  UsernamePasswordCredentialsImpl c = new UsernamePasswordCredentialsImpl(CredentialsScope.GLOBAL, null, "test", "bob", "s3cr3t");
  CredentialsProvider.lookupStores(r.jenkins).iterator().next().addCredentials(Domain.global(), c);
  assertCredentials("alice", null);
  assertCredentials("alice", p1);
  assertCredentials("alice", p2);
  assertCredentials("bob", null);
  assertCredentials("bob", p1);
  assertCredentials("bob", p2, c);
}
private void assertCredentials(String user, final Job<?,?> owner, Credentials... expected) {

代码示例来源:origin: jenkinsci/subversion-plugin

@Issue("SECURITY-303")
@Test
public void credentialsAccess() throws Exception {
  r.jenkins.setSecurityRealm(r.createDummySecurityRealm());
  r.jenkins.setAuthorizationStrategy(new MockAuthorizationStrategy().
    grant(Jenkins.READ, Item.READ, Item.BUILD, Item.CONFIGURE).everywhere().to("devlead").
    grant(Jenkins.READ, Item.READ, Item.BUILD).everywhere().to("user"));
  SystemCredentialsProvider.getInstance().setDomainCredentialsMap(Collections.singletonMap(Domain.global(), Collections.<Credentials>singletonList(
    new UsernamePasswordCredentialsImpl(CredentialsScope.GLOBAL, "svncreds", null, "svn", "s3cr3t"))));
  r.createFreeStyleProject("p");
  assertSniff("devlead", "svn:s3cr3t", /* server response is bad, Jenkins should say so */ false);
  assertSniff("user", null, /* Jenkins should not even try to connect, pretend it is OK */ true);
}
private void assertSniff(String user, String sniffed, boolean ok) throws Exception {

代码示例来源:origin: jenkinsci/pipeline-model-definition-plugin

@Test
public void invalidUser() throws Exception {
  File testPath = writeJenkinsfileToTmpFile("simplePipeline");
  j.jenkins.setSecurityRealm(j.createDummySecurityRealm());
  j.jenkins.setAuthorizationStrategy(new MockAuthorizationStrategy()
      .grant(Jenkins.ADMINISTER).everywhere().to("bob")
      .grant(Jenkins.READ,
          Item.READ,
          Item.EXTENDED_READ).everywhere().to("alice"));
  final CLICommandInvoker.Result result = command.withStdin(FileUtils.openInputStream(testPath)).invoke();
  assertThat(result, not(succeeded()));
  assertThat(result.stderr(), containsString("ERROR: anonymous is missing the Overall/Read permission"));
  declarativeLinterCommand.setTransportAuth(User.get("alice").impersonate());
  final CLICommandInvoker.Result result2 = command.withStdin(FileUtils.openInputStream(testPath)).invoke();
  assertThat(result2, succeeded());
  assertThat(result2, hasNoErrorOutput());
  assertThat(result2.stdout(), containsString("Jenkinsfile successfully validated."));
}

代码示例来源:origin: jenkinsci/workflow-cps-plugin

@Issue("SECURITY-1266")
  @Test
  public void configureRequired() throws Exception {
    CpsFlowDefinition.DescriptorImpl d = r.jenkins.getDescriptorByType(CpsFlowDefinition.DescriptorImpl.class);

    r.jenkins.setSecurityRealm(r.createDummySecurityRealm());
    // Set up an administrator, and three developer users with varying levels of access.
    r.jenkins.setAuthorizationStrategy(new MockAuthorizationStrategy().
        grant(Jenkins.ADMINISTER).everywhere().to("admin").
        grant(Jenkins.READ, Item.CONFIGURE).everywhere().to("dev1").
        grant(Jenkins.READ).everywhere().to("dev2"));
    WorkflowJob job = r.jenkins.createProject(WorkflowJob.class, "w");

    try (ACLContext context = ACL.as(User.getById("admin", true))) {
      assertThat(d.doCheckScriptCompile(job, "echo 'hello").toString(), containsString("fail"));
    }
    try (ACLContext context = ACL.as(User.getById("dev1", true))) {
      assertThat(d.doCheckScriptCompile(job, "echo 'hello").toString(), containsString("fail"));
    }
    try (ACLContext context = ACL.as(User.getById("dev2", true))) {
      assertThat(d.doCheckScriptCompile(job, "echo 'hello").toString(), containsString("success"));
    }
  }
}

代码示例来源:origin: jenkinsci/cloudbees-folder-plugin

@Test public void getDestinations() throws Exception {
  Folder d1 = r.jenkins.createProject(Folder.class, "d1"); // where we start
  FreeStyleProject j = d1.createProject(FreeStyleProject.class, "j");
  final Folder d2 = r.jenkins.createProject(Folder.class, "d2"); // where we could go
  Folder d3 = r.jenkins.createProject(Folder.class, "d3"); // where we cannot
  r.jenkins.setSecurityRealm(r.createDummySecurityRealm());
  r.jenkins.setAuthorizationStrategy(new MockAuthorizationStrategy().
    grant(Jenkins.READ, Item.READ).everywhere().to("joe").
    grant(Item.CREATE).onItems(d2).to("joe"));
  try (ACLContext ctx = ACL.as(User.get("joe"))) {
    assertEquals(Arrays.asList(d1, d2), new StandardHandler().validDestinations(j));
    assertEquals(Arrays.asList(r.jenkins, d2), new StandardHandler().validDestinations(d1));
    assertNotEquals(Arrays.asList(r.jenkins, d3), new StandardHandler().validDestinations(j));
    assertNotEquals(Arrays.asList(d1, d3), new StandardHandler().validDestinations(d1));
  }
}

代码示例来源:origin: jenkinsci/workflow-cps-plugin

@Override public void evaluate() throws Throwable {
    jenkins().setSecurityRealm(story.j.createDummySecurityRealm());
    jenkins().save();
    QueueItemAuthenticatorConfiguration.get().getAuthenticators().add(new MockQueueItemAuthenticator(Collections.singletonMap("demo", User.getById("someone", true).impersonate())));
    p = jenkins().createProject(WorkflowJob.class, "demo");
    p.setDefinition(new CpsFlowDefinition("echo \"ran as ${auth()}\"", true));
    b = story.j.assertBuildStatusSuccess(p.scheduleBuild2(0));
    story.j.assertLogContains("ran as someone", b);
  }
});

代码示例来源:origin: jenkinsci/pipeline-model-definition-plugin

@Issue("JENKINS-48379")
@Test
public void submitterParameterInInput() throws Exception {
  j.jenkins.setSecurityRealm(j.createDummySecurityRealm());

代码示例来源:origin: jenkinsci/workflow-cps-plugin

@Override public void evaluate() throws Throwable {
    jenkins().setSecurityRealm(story.j.createDummySecurityRealm());
    jenkins().save();
    QueueItemAuthenticatorConfiguration.get().getAuthenticators().add(new MockQueueItemAuthenticator(Collections.singletonMap("demo", User.getById("someone", true).impersonate())));
    p = jenkins().createProject(WorkflowJob.class, "demo");
    p.setDefinition(new CpsFlowDefinition("checkAuth()", false));
    ScriptApproval.get().preapproveAll();
    startBuilding();
    waitForWorkflowToSuspend();
    assertTrue(b.isBuilding());
    story.j.waitForMessage("running as someone", b);
    CheckAuth.finish(false);
    waitForWorkflowToSuspend();
    assertTrue(b.isBuilding());
    story.j.waitForMessage("still running as someone", b);
  }
});

代码示例来源:origin: jenkinsci/cloudbees-folder-plugin

@Test
public void given_folderCredential_when_builtAsUserWithUseItem_then_credentialFound() throws Exception {
  Folder f = createFolder();
  CredentialsStore folderStore = getFolderStore(f);
  folderStore.addCredentials(Domain.global(),
      new UsernamePasswordCredentialsImpl(CredentialsScope.GLOBAL, "foo-manchu", "Dr. Fu Manchu", "foo",
          "manchu"));
  FreeStyleProject prj = f.createProject(FreeStyleProject.class, "job");
  prj.getBuildersList().add(new HasCredentialBuilder("foo-manchu"));
  JenkinsRule.DummySecurityRealm realm = r.createDummySecurityRealm();
  r.jenkins.setSecurityRealm(realm);
  MockAuthorizationStrategy strategy = new MockAuthorizationStrategy();
  strategy.grant(CredentialsProvider.USE_ITEM).everywhere().to("bob");
  strategy.grant(Item.BUILD).everywhere().to("bob");
  strategy.grant(Computer.BUILD).everywhere().to("bob");
  r.jenkins.setAuthorizationStrategy(strategy);
  HashMap<String, Authentication> jobsToUsers = new HashMap<String, Authentication>();
  jobsToUsers.put(prj.getFullName(), User.get("bob").impersonate());
  MockQueueItemAuthenticator authenticator = new MockQueueItemAuthenticator(jobsToUsers);
  QueueItemAuthenticatorConfiguration.get().getAuthenticators().clear();
  QueueItemAuthenticatorConfiguration.get().getAuthenticators().add(authenticator);
  r.buildAndAssertSuccess(prj);
}

代码示例来源:origin: jenkinsci/cloudbees-folder-plugin

@Test
public void given_folderCredential_when_builtAsUserWithoutUseItem_then_credentialNotFound() throws Exception {
  Folder f = createFolder();
  CredentialsStore folderStore = getFolderStore(f);
  folderStore.addCredentials(Domain.global(),
      new UsernamePasswordCredentialsImpl(CredentialsScope.GLOBAL, "foo-manchu", "Dr. Fu Manchu", "foo",
          "manchu"));
  FreeStyleProject prj = f.createProject(FreeStyleProject.class, "job");
  prj.getBuildersList().add(new HasCredentialBuilder("foo-manchu"));
  JenkinsRule.DummySecurityRealm realm = r.createDummySecurityRealm();
  r.jenkins.setSecurityRealm(realm);
  MockAuthorizationStrategy strategy = new MockAuthorizationStrategy();
  strategy.grant(Item.BUILD).everywhere().to("bob");
  strategy.grant(Computer.BUILD).everywhere().to("bob");
  r.jenkins.setAuthorizationStrategy(strategy);
  HashMap<String, Authentication> jobsToUsers = new HashMap<String, Authentication>();
  jobsToUsers.put(prj.getFullName(), User.get("bob").impersonate());
  MockQueueItemAuthenticator authenticator = new MockQueueItemAuthenticator(jobsToUsers);
  QueueItemAuthenticatorConfiguration.get().getAuthenticators().clear();
  QueueItemAuthenticatorConfiguration.get().getAuthenticators().add(authenticator);
  r.assertBuildStatus(Result.FAILURE, prj.scheduleBuild2(0).get());
}

相关文章

Jenkins类方法