[JENKINS-71783] Configure aclApprovedSignatures with JCasC #885
Description
Currently it is possible to add approved signatures with JCasC as follows:
security:
scriptApproval:
approvedSignatures:
- "field hudson.model.UpdateSite$Entry version"
- "method hudson.model.Run getCause java.lang.Class"
I could not find a way to add signatures approved assuming permission check (using an ACL: access control list). I have tried the following but it did not work:
security:
scriptApproval:
aclApprovedSignatures:
- "staticMethod jenkins.model.Jenkins getInstance"
approvedSignatures:
- "field hudson.model.UpdateSite$Entry version"
- "method hudson.model.Run getCause java.lang.Class"
It would be great to have such improvement.
Originally reported by 
vittorio_c82, imported from: Configure aclApprovedSignatures with JCasC
- status: Open
- priority: Major
- component(s): script-security-plugin
- label(s): jenkins, plugin
- resolution: Unresolved
- votes: 1
- watchers: 2
- imported: 2025-12-09
Raw content of original issue
Currently it is possible to add approved signatures with JCasC as follows:
security: scriptApproval: approvedSignatures: - "field hudson.model.UpdateSite$Entry version" - "method hudson.model.Run getCause java.lang.Class"I could not find a way to add signatures approved assuming permission check (using an ACL: access control list). I have tried the following but it did not work:
security: scriptApproval: aclApprovedSignatures: - "staticMethod jenkins.model.Jenkins getInstance" approvedSignatures: - "field hudson.model.UpdateSite$Entry version" - "method hudson.model.Run getCause java.lang.Class"It would be great to have such improvement.
environment
- Jenkins 2.401.3<br/>
- Configuration as Code Plugin 1670.v564dc8b_982d0<br/>
- Script Security Plugin 1264.vecf66020eb_7d