'User is missing the Overall/Read permission' error with Jenkins GitHub OAuth Plugin

I'm using the github oauth plugin for our logins but for all of our users in the Organisation I get an error:

Access Denied

<user> is missing the Overall/Read permission

I have tried everything I can possibly think of to try to make this work and I'm probably going to fallback to making everyone an admin user, which i would prefer not to do.

Any advise would be appreciated.


Solution 1:

This is how I resolved the authentication problem:

  1. Edit config.xml file, e.g.

    sudo vi /var/lib/jenkins/config.xml
    
    1. Change useSecurity element's value to false, e.g.

      <useSecurity>false</useSecurity>
      
    2. Remove authorizationStrategy block

  2. Restart Jenkins: /etc/init.d/jenkins restart.

  3. Access Jenkins through URL as usual and reconfigure security again.

Solution 2:

Have you followed this step, from the plugin page?

Control user authorization (i.e. who is allowed to see the jobs and build them) using the Github Commiter Authorization Strategy

Also, make sure you actually allow authenticated users to access Jenkins

  • Under Jenkins global configuration, under Authorization, add user/group called authenticated
  • Give that group Overall Read permission
  • The group should show up with a "group" icon (two users), as opposed to single user icon.

Solution 3:

I had the same problem with "... is missing the Overall/Read permission" on Jenkins (1.651.2) with activated Credentials Plugin.

But it was my own failure: I only configured the user on project side (by credential plugin) but missed to configure the global security.

So I fixed it by selecting:

Jenkins -> Manage Jenkins -> Configure Global Security

And did setup missing global settings (or project matrix based one)

Solution 4:

reset from <useSecurity>true</useSecurity> to <useSecurity>false</useSecurity> in config.xml and set the permission again.

Solution 5:

Edit file /var/lib/jenkins/config.xml and add the following lines :

  <authorizationStrategy class="hudson.security.ProjectMatrixAuthorizationStrategy">
    <permission>hudson.model.Hudson.Read:john.smith</permission>
  </authorizationStrategy> 

Restart Jenkins