The Fedora CI team relies heavily on Jenkins automation for testing builds in Fedora.
Our Jenkins instances are configured with OpenID to allow admins in the fedora-ci-admins group admin access.
To configure this, you simply need to:
install the OpenID plugin
As an admin, go to Jenkins → Configure Global Security
Under Access Control, change Security Realm to "OpenID SSO"
Set Provider URL to:
Under Authorization, set to "Project-based Matrix Authorization Strategy"
fedora-ci-adminsand check the "Administer" box in the Overall column
Once you save/apply this config, you may need to logout/login to re-apply your permissions
NOTE: OpenID does pulls from groups in Jenkins without any custom prefixes required
The Fedora CI team has recently created an organiation in github here: Fedora CI github
The goal is to move all of our repos under this org in the near future.
RabbitMQ and pipelines
The same pipeline cannot be used twice by two different pipelines.
Each Jenkins job that uses one of osci rabbitmq queue must have entry in the table bellow.
Want to help? Learn how to contribute to Fedora Docs ›