/hudson-war/src/main/webapp/help/system-config/enableSecurity.html

http://github.com/hudson/hudson · HTML · 20 lines · 17 code · 3 blank · 0 comment · 0 complexity · 5afb46788315306d98d8814ad166efa0 MD5 · raw file

  1. <div>
  2. If enabled, you have to login with a username and a password that has the "admin" role
  3. before changing the configuration or running a new build (look for the "login" link
  4. at the top right portion of the page).
  5. Configuration of user accounts is specific to the web container you are using.
  6. (For example, in Tomcat, by default, it looks for <tt>$TOMCAT_HOME/conf/tomcat-users.xml</tt>)
  7. <p>
  8. If you are using Hudson in an intranet (or other "trusted" environment), it's usually
  9. desirable to leave this checkbox off, so that each project developer can configure their own
  10. project without bothering you.
  11. <p>
  12. If you are exposing Hudson to the internet, you must turn this on. Hudson launches
  13. processes, so insecure Hudson is a sure way of being hacked.
  14. <p>
  15. For more information about security and Hudson, see
  16. <a href="http://wiki.hudson-ci.org/display/HUDSON/Securing+Hudson">this document</a>.
  17. </div>