The DevFactory Jenkins server uses a folder-based authorization strategy. Each folder has three roles associated with it and they afford varying degrees of access to the resources contained in the folder. The roles are named as follows.
Upland-<Product>-RO, Upland-<Product>-RW, Upland-<Product>-Admin
The following table reveals how the permissions map to the roles.
| Permission |
Upland-<Product>-RO |
Upland-<Product>-RW |
Upland-<Product>-Admin |
| Credentials/Create |
|
|
|
| Credentials/ManageDomains |
|
|
|
| Credentials/Update |
|
|
|
| Credentials/UseItem |
|
|
|
| Credentials/UseOwn |
|
|
|
| Credentials/View |
|
|
|
| Job/Build |
|
|
|
| Job/Cancel |
|
|
|
| Job/Configure |
|
|
|
| Job/Create |
|
|
|
| Job/Delete |
|
||
| Job/Discover |
|
|
|
| Job/ExtendedRead |
|
|
|
| Job/Move |
|
|
|
| Job/Read |
|
|
|
| Job/WipeOut |
|
||
| Job/Workspace |
|
|
|
| Run/Artifacts |
|
|
|
| Run/Delete |
|
||
| Run/Replay |
|
|
|
| Run/Update |
|
|
|
| View/Configure |
|
|
|
| View/Create |
|
|
|
| View/Delete |
|
||
| View/Read |
|
|
|
| SCM/Tag |
|
|
|
| Lockable Resources/Reserve |
|
|
|
| Lockable Resources/Unlock |
|
|
|
| Lockable Resources/View |
|
|
|
To assign a role to a user, navigate to https://jenkins-upland.devfactory.com/folder-auth/, locate the "Current Folder Roles" subsection and use the search bar (1) to find the desired role and the SID(2) to assign it to the user as illustrated below.
