Revamp the layout and icons of the header bar and breadcrumbs.
Instances with plugins that depend on details of the Jenkins layout (e.g. Simple Theme Plugin) may experience UI/layout problems.
A new experimental header color scheme can be enabled by setting the jenkins.ui.refresh system property to true.
(issue 60920)
Introduce a new experimental UI that can be enabled by setting the jenkins.ui.refresh system property to true.
Currently it includes a new header color scheme, more changes to be added as a part of the UI/UX revamp.
(pull 4463, issue 60920, JEP-223, Jenkins UX SIG)
Add a new experimental Overall/Manage permission which allows a user to configure parts of the global Jenkins configuration without having the Overall/Administer permission.
This is an experimental feature, disabled by default, that can be enabled by setting the jenkins.security.ManagePermission system property to true.
(pull 4501, issue 60266, JEP-223)
Add a new experimental Overall/SystemRead permission, which gives (almost) full read access to the Jenkins instance.
The permission is disabled by default, install the Extended Read Permission plugin to activate it.
(pull 4506, issue 12548, JEP-224, Extended Read Permission plugin)
Deprecate the Overall/RunScripts, Overall/UploadPlugins, and Overall/ConfigureUpdateCenter permissions.
Permissions were announced as dangerous and disabled by default in major authorization plugins in 2017.
Custom authorization strategy implementations that grant Overall/Administer without implying one or more of these three permissions will no longer work as expected.
Configurations that grant any of these permissions to users without Overall/Administer will no longer work as expected.
(pull 4365, issue 60266, JEP-223, 2017-04-10 security advisory for Matrix Authorization plugin, 2017-04-10 security advisory for Role-Based Authorization plugin)
Remove the ability to have CSRF protection disabled.
Instances upgrading from older versions of Jenkins will have CSRF protection enabled and the default issuer set if they currently have it disabled.
(pull 4509)
Order Admin Monitors in Global Configuration page.
(issue 60966)
Add memory usage monitor to system information page.
(pull 4499)
Improve performance when loading tied jobs.
(pull 4497)
Fix issue with too many open files error when using resource domain.
(issue 61121)
Add french translation for concurrent build help.
(pull 4505)
Developer: Add new checkAnyPermission, hasAnyPermission methods that allow access if a user has one of the supplied permissions.
(pull 4506, issue 12548, JEP-224)
Developer: Add a new f:possibleReadOnlyField jelly tag, wraps fields in an if readonly check and then outputs the result as text if the authenticated user only has read access.
N/A is added if the field is empty.
(pull 4506, issue 12548, JEP-224)
Developer: Add a new l:hasAdministerOrManage jelly tag, hides the body of the tag if the user doesn't have Overall/Administer or Overall/Manage.
(pull 4506, issue 12548, JEP-224)
Developer: Allow plugins to force an update of an UpdateSite.
(issue 61046)