Home
Contribute Contact Us Browse all meetings
Home Contribute Contact Us Browse all meetings
Jenkins / June 2021 Contributor Summit / 25 Jun 2021
Jenkins / June 2021 Contributor Summit / 25 Jun 2021
Previous Meeting Next Meeting
Add meeting Rate page Subscribe
youtube image
From YouTube: End User Panel Ivan Fernandez

Description

Jenkins Contributor Summit June 25, 2021 End User Panel - Ivan Fernandez, and Victor Martinez

A

Yeah, I I want to make a point uh about the the they use the try to to avoid the the security script like to in the yankees uh charlotte library, and we have a really big exalted library and we don't need to to approve any any script or or use that line for anything we can. We will manage to to do everything that we want without have to worry around the script security plugin with scripts with binaries with other things. So I think that this is not required to to use the plugin.

A

You can always find some way to do the same thing in in the best way that is keeping the security plugin in there.

B

There are some plugins like uh python utility steps like note api iterator. For me, for example, it was always the case when I needed to do custom scheduling.

B

I was using note iterator api, which would allow me to query notes and schedule my pipelines, my subtasks for parallel pipelines using them. But yes still, there are many cases when direct access to binary api would be beneficial and the uh what the other common use cases.

C

But as long as you're doing it in a global shared library, I don't think you hit script security if you're trying to use it in a in your own pipeline or a folder when you will, but not.

D

In global yeah, it's exactly this way. We are loading our library uh in the runtime, so uh I think it has restrictions as the library which is connected to a folder and.

D

There's too much code already to rewrite rewrite right. So um that's why we keep using uh permissible security plugins too hard for us to rewrite our old code in order to not to interfere with security.

C

Is there a reason you're not using a global one and just a folder one? It should just be. If you move to global, then I think it would just work.

D

Yeah but but you can't, we use library step to load our library dynamically. We need this for versioning.

E

In our case, a lot of the scripts are part of the parameters in the ui, we're using the active choices, plugin that creates sort of interactive cascading parameters and also creates for us these html and javascript elements that were interested for more interaction in introducing graphics, libraries, uh scientific libraries, imaging and so on and uh yeah all of those for us. We need to go and approve those uh scripts.

A

For mercenary, we use tax in the hit the repository and we have a a current task that is used in in all the pipelines and we have some regression or wherever we move that stuff. That is the current to the previous one and we the the issue. In the time we release the the library ten times five times between five and ten times a week, and we managed to have the the library in barcelona without any issues in the three years that we are using the library more or less.

E

I should say that I don't think I have deactivated the security plugin or use the the other plugin with the permissive permissions, whatever it's called, but we have uh tinkering around with a uh what was called a wise renderer or something like that in the in the startup of jenkins, so that it will allow html and things like that to be rendered.

E

Sorry, oleg, I don't know if I'm using the right nomenclature for that one.

B

No.

F

um So uh this one on the top is like you were saying about this ability, um so I want to be the voice as well from some of the users that we have at the last thing, like some of them find really hard when you run so many things in parallel on a pipeline to debug. What's going on right, so that's one of the issues we hear about quite often how to make this easier to debug from the console our potential one, because sometimes he doesn't even reload correctly, then the locks in the ui.

F

So that's probably one of the issues. From from the point of view of the usability, I would like to highlight.

F

And also about the usability, I think that's also a good point, um the one regarding uh to make the life easier from the end user, how to restart a particular stage when the bill or that particular pipeline failed, not working in all the cases and that's probably one of the key areas as well.

F

How we can make people way of working with the jenkins pipelines easier that they don't really need to wait for, as I already hear, like some bills take hours and so on, so how you can only run a particular stage of pipeline easily without going through the entire pipeline as well. That's something that's what I have in here. I haven't found an easy way to do that and that's why I listen for now users, quite often as well.

F

So there's probably a couple of points now relative point, just in case we don't have time for the presentation of what we do and how we do things in the lasting with an agent.