|
1 | 1 | == Feature Flags |
2 | 2 |
|
3 | 3 | The following system properties are available for toggling or specifying particular features to turn on or off. |
4 | | -Like any system properties, they should be considered experimental and subject to removal without notice. |
| 4 | +Like any https://www.jenkins.io/doc/book/managing/system-properties/[Jenkins features controlled with system properties], they should be considered experimental and subject to removal without notice. |
5 | 5 |
|
6 | 6 | * `com.cloudbees.plugins.credentials.UseOwnPermission` |
7 | 7 | - Setting this property to `true` enables the _Credentials/UseOwn_ permission. |
| 8 | + When this flag is `false` or unspecified, then _Job/Build_ is used instead for the same purpose. |
8 | 9 | Primarily useful when using project-based security authorization strategies or authenticated builds, this permission allows an immediate action to access user-scoped credentials from the user's private credentials store. |
9 | 10 | Immediate actions include invoking a build with parameters, tagging a build in SCM, providing credentials to a pipeline input step, and other user interaction. |
10 | 11 | Using this permission can help limit which users are allowed to provide their own credentials as input to an action which can be particularly handy when combined with the https://plugins.jenkins.io/authorize-project/[Authorize Project] plugin where builds may be run as the user who triggered the build. |
11 | 12 | This allows separation of the permission to build a job from the permission to provide user-scoped credentials. |
12 | | - When this flag is `false` or unspecified, then _Job/Build_ is used instead for the same purpose. |
13 | 13 |
|
14 | 14 | * `com.cloudbees.plugins.credentials.UseItemPermission` |
15 | 15 | - Setting this property to `true` enables the _Credentials/UseItem_ permission. |
| 16 | + When this flag is `false` or unspecified, then _Job/Configure_ is used instead for the same purpose. |
16 | 17 | Primarily useful when using project-based security authorization strategies or authenticated builds, this permission allows an immediate action to access credentials within the scope of the item. |
17 | 18 | Immediate actions include invoking a build with parameters, tagging a build in SCM, providing credentials to a pipeline input step, and other user interaction. |
18 | 19 | This allows separation of the permission to configure a job from permission to use credentials that the job would normally have access to. |
19 | | - When this flag is `false` or unspecified, then _Job/Configure_ is used instead for the same purpose. |
20 | 20 |
|
21 | 21 | * `com.cloudbees.plugins.credentials.CredentialsProvider.fingerprintEnabled` |
22 | 22 | - Overrides the default behavior that credentials tracking is handled by Jenkins fingerprints. |
|
0 commit comments