Wadeck is a member of the Jenkins security team, working on fixes and improvements to Jenkins security.
He likes to provide solutions that are both useful and easy to use.
This is a speaker blogpost for a DevOps World | Jenkins World 2019 talk in Lisbon, Portugal
Come join us at DevOps World | Jenkins World 2019 for "Thinking about Jenkins Security", a talk about securing your Jenkins server.
We’ll review the layers that secure Jenkins and describe techniques that you can use to protect your Jenkins server.
Topics will include:
The secure by default configuration that Jenkins...
About API tokens
Jenkins API tokens are an authentication mechanism that allows a tool (script, application, etc.) to impersonate a user
without providing the actual password for use with the Jenkins API or CLI.
This is especially useful when your security realm is based on a central directory, like Active Directory or LDAP,
and you don’t want to store your password in scripts.
Recent versions of Jenkins also make...