I need some clarity and maybe a fix.

I'm using this plugin to authorise who views our Jenkins ci server:

https://wiki.jenkins-ci.org/display/JENKINS/Github+OAuth+Plugin

As I understand it anyone who is auth'd to view one of our github project's can also login to our Jenkins box. This works

I thought it would also allow the person logging in to only view the Project that they have GitHub permission on.

For instance.

• Three projects on GitHub (A,B,C).

• Three builds on Jenkins.

• User 1 has Git access to all 3 projects (A B C).

• User 2 has Git access to only 1 project (A).

When logging into Jenkins:

• User 1 can see all 3 projects ( this works )
• User 2 can only see project A

The problem is User 2 can also see all 3 projects when they should only see 1!

Have I got this correct, and if so is this a bug?

I have the settings set in

Jenkins > configuration > Github Authorization Settings.

• Here we have some admin users.
• One organization.
• And none out of the 4 checkboxes ticked.
• (User 2, is not an admin, is not part of the org).

The plugin is open sourced here:

https://github.com/mocleiri/github-oauth-plugin

I was trying to get Jenkins to print me the Logs from the plugin but I also failed at viewing these (to see if there was an issue). I followed these instructions: https://wiki.jenkins-ci.org/display/JENKINS/Logging

It's the same concept as outlined below but using GitHub rather than manually selecting users: https://wiki.jenkins-ci.org/display/JENKINS/2012/01/03/Allow+access+to+specific+projects+for+Users%28Assigning+security+for+projects+in+Jenkins%29

Have I got this right or wrong? Is it possible to auth a Jenkins user to only see one project?