dependabot[bot] on maven
dependabot[bot] on maven
Bump aws-java-sdk from 1.11.457… (compare)
timja on master
Update broken link in Secrets d… (compare)
"jenkins":
"clouds":
- "amazonEC2":
- "ami": "ami-xxx"
"connectBySSHProcess": true
"customDeviceMapping": "/dev/sda1=:500:true:gp2"
"deleteRootOnTermination": true
"description": "build"
"hostKeyVerificationStrategy": "CHECK_NEW_HARD"
"iamInstanceProfile": "arn:aws:iam::xxx:instance-profile/xxx"
"idleTerminationMinutes": "5"
"instanceCapStr": "50"
"labelString": "xxx"
"maxTotalUses": 1
"minimumNumberOfInstancesTimeRangeConfig":
"minimumNoInstancesActiveTimeRangeDays":
"friday": false
"monday": true
"saturday": false
"sunday": false
"thrusday": true
"tuesday": true
"wednesday": true
"minimumNumberOfSpareInstances": 0
"mode": "EXCLUSIVE"
"monitoring": false
"numExecutors": 1
"remoteAdmin": "ubuntu"
"remoteFS": "./jenkins-agent"
"securityGroups": "sg-xxx"
"subnetId": "subnet-xxx"
"tags":
- "name": "Name"
"value": "xxx"
- "name": "jenkins_label"
"value": "xxx"
"type": "M54xlarge"
2021-04-02 20:23:58.530+0000 [id=5604] WARNING h.i.i.InstallUncaughtExceptionHandler#handleException: Caught unhandled exception with ID 899a19e6-cf5e-45dd-8ee5-34aeeda6e1d2
io.jenkins.plugins.casc.ConfiguratorException: Invalid configuration elements for type class hudson.plugins.ec2.util.MinimumNumberOfInstancesTimeRangeConfig : minimumNoInstancesActiveTimeRangeDays.
Available attributes : minimumNoInstancesActiveTimeRangeFrom, minimumNoInstancesActiveTimeRangeTo
at io.jenkins.plugins.casc.BaseConfigurator.handleUnknown(BaseConfigurator.java:376)
at io.jenkins.plugins.casc.BaseConfigurator.configure(BaseConfigurator.java:365)
at io.jenkins.plugins.casc.BaseConfigurator.configure(BaseConfigurator.java:276)
at io.jenkins.plugins.casc.impl.configurators.DataBoundConfigurator.configure(DataBoundConfigurator.java:83)
at io.jenkins.plugins.casc.BaseConfigurator.configure(BaseConfigurator.java:352)
at io.jenkins.plugins.casc.BaseConfigurator.configure(BaseConfigurator.java:276)
at io.jenkins.plugins.casc.impl.configurators.DataBoundConfigurator.configure(DataBoundConfigurator.java:83)
at io.jenkins.plugins.casc.impl.configurators.DataBoundConfigurator.tryConstructor(DataBoundConfigurator.java:152)
at io.jenkins.plugins.casc.impl.configurators.DataBoundConfigurator.instance(DataBoundConfigurator.java:77)
at io.jenkins.plugins.casc.BaseConfigurator.configure(BaseConfigurator.java:267)
at io.jenkins.plugins.casc.impl.configurators.DataBoundConfigurator.configure(DataBoundConfigurator.java:83)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.lambda$doConfigure$16668e2$1(HeteroDescribableConfigurator.java:277)
at io.vavr.CheckedFunction0.lambda$unchecked$52349c75$1(CheckedFunction0.java:247)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.doConfigure(HeteroDescribableConfigurator.java:277)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.lambda$configure$2(HeteroDescribableConfigurator.java:86)
at io.vavr.control.Option.map(Option.java:392)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.lambda$configure$3(HeteroDescribableConfigurator.java:86)
at io.vavr.Tuple2.apply(Tuple2.java:238)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.configure(HeteroDescribableConfigurator.java:83)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.check(HeteroDescribableConfigurator.java:92)
at io.jenkins.plugins.casc.impl.configurators.HeteroDescribableConfigurator.check(HeteroDescribableConfigurator.java:55)
at io.jenkins.plugins.casc.BaseConfigurator.configure(BaseConfigurator.java:344)
at io.jenkins.plugins.casc.BaseConfigurator.check(BaseConfigurator.java:287)
at io.jenkins.plugins.casc.ConfigurationAsCode.lambda$checkWith$8(ConfigurationAsCode.java:753)
at io.jenkins.plugins.casc.ConfigurationAsCode.invokeWith(ConfigurationAsCode.java:689)
minimumNoInstancesActiveTimeRangeDays is a Map<?,?>. We decided not to support Maps.
Hello, I am trying to configure active directory plugin with jcasc with helm ... is there a way to pass the values to the values. yaml instead of providing the secrets directly in values.yaml file :
securityRealm: |
activeDirectory:
domains:
- name: "XXXXXXXX"
servers: "xxxxxxxxx"
site: "site"
bindName: "xxxxxx"
bindPassword: "xxxxxxxxxxxxxx"
tlsConfiguration: TRUST_ALL_CERTIFICATES
HI ... I am trying to configure ad plugin with jcasc code with helm charts
I made values.yaml as below :
JCasC:
defaultConfig: true
configScripts:
welcome-message: |
jenkins:
systemMessage: Welcome to our CI\CD server. This Jenkins is configured and managed 'as code' s
securityRealm: ${filename}
and. my secret.yaml looks like this :
apiVersion: v1
kind: Secret
metadata:
name: adserver
namespace: {{ template "jenkins.namespace" . }}
type: Opaque
data:
filename: {{ "fAgICAgYmluZFBhc3N3b3JkOiAiY2hhMnBoZWV2LmFoUjlxdWVlMUFvc2gycGFqb281SWIiCiAgICAggICAgICAgIHJlbW92ZUlycmVsZXZhbnRHcm91cHM6IHRydWUKICAgICAgICBjdXN0b21Eb21haW46IHRydWUKICAgICAgICBjYWNoZToKICAgICAgICAgIHNpemU6IDI1MAogICAgICAgICAgdHRsOiAxMAogICAgICAgIHN0YXJ0VGxzOiBmYWxzZQogICAgICAgIGludGVybmFsVXNlcnNEYXRhYmFzZToKICAgICAgICAgIGplbmtpbnNJbnRlcm5hbFVzZXI6ICJqZW5raW5zIg==" }}
but still my controller not like this set up .. .. when exec to the jenkins-controller ..... I could see this :
jenkins@jenkins-test2-0:/run/secrets/adserver$ cat /var/jenkins_home/casc_configs/jcasc-default-config.yaml
jenkins:
authorizationStrategy:
loggedInUsersCanDoAnything:
allowAnonymousRead: true
securityRealm:
${filename}
itr suppose to be my values which I gave in secret.yaml file right ?? Could someone please help me out.. early response is appreciable ... Thanks!!
authorizationStrategy: unsecured
, but instead of being admin
there is log in
button at top-right
securityRealm: null
authorizationStrategy: Unsecured
According to https://jenkinsci-users.narkive.com/7w1LjCoH/configuration-as-a-code-plugin-securiy-disable but I've never done it so unsure
@halkeye:g4v.dev It worked! Thanks! Becoming an admin
would probably be slightly more intuitive, but having no labels at rop-right corner is even better ;) And jCasC.yaml
is even more concise now:
jenkins:
securityRealm: null
authorizationStrategy: unsecured
Btw, I consider local docker jenkins setup without any authentication as secure: developer decrypts his credentials (deploy server keys, GitLab password, etc.) with gpg, runs jenkins locally inside docker, performs builds/deploys, closes container, shred
s credentials.yaml. Everything works thankfully to CasC! Jenkins+CasC is cool!