Changelog

Major enhancement

Revamp the layout and icons of the header bar and breadcrumbs. Instances with plugins that depend on details of the Jenkins layout (e.g. Simple Theme Plugin) may experience UI/layout problems. A new experimental header color scheme can be enabled by setting the jenkins.ui.refresh system property to true. JENKINS-60920
Introduce a new experimental UI that can be enabled by setting the jenkins.ui.refresh system property to true. Currently it includes a new header color scheme, more changes to be added as a part of the UI/UX revamp. pull 4463, JENKINS-60920 , JEP-223, Jenkins UX SIG
Add a new experimental Overall/Manage permission which allows a user to configure parts of the global Jenkins configuration without having the Overall/Administer permission. This is an experimental feature, disabled by default, that can be enabled by setting the jenkins.security.ManagePermission system property to true. pull 4501, JENKINS-60266 , JEP-223
Add a new experimental Overall/SystemRead permission, which gives (almost) full read access to the Jenkins instance. The permission is disabled by default, install the Extended Read Permission plugin to activate it. pull 4506, JENKINS-12548 , JEP-224, Extended Read Permission plugin

Enhancement

Deprecate the Overall/RunScripts, Overall/UploadPlugins, and Overall/ConfigureUpdateCenter permissions. Permissions were announced as dangerous and disabled by default in major authorization plugins in 2017. Custom authorization strategy implementations that grant Overall/Administer without implying one or more of these three permissions will no longer work as expected. Configurations that grant any of these permissions to users without Overall/Administer will no longer work as expected. pull 4365, JENKINS-60266 , JEP-223, 2017-04-10 security advisory for Matrix Authorization plugin, 2017-04-10 security advisory for Role-Based Authorization plugin
Remove the ability to have CSRF protection disabled. Instances upgrading from older versions of Jenkins will have CSRF protection enabled and the default issuer set if they currently have it disabled. pull 4509
Order Admin Monitors in Global Configuration page. JENKINS-60966
Add memory usage monitor to system information page. pull 4499
Improve performance when loading tied jobs. pull 4497
Add french translation for concurrent build help. pull 4505
Developer: Add new checkAnyPermission, hasAnyPermission methods that allow access if a user has one of the supplied permissions. pull 4506, JENKINS-12548 , JEP-224
Developer: Add a new f:possibleReadOnlyField jelly tag, wraps fields in an if readonly check and then outputs the result as text if the authenticated user only has read access. N/A is added if the field is empty. pull 4506, JENKINS-12548 , JEP-224
Developer: Add a new l:hasAdministerOrManage jelly tag, hides the body of the tag if the user doesn't have Overall/Administer or Overall/Manage. pull 4506, JENKINS-12548 , JEP-224
Developer: Allow plugins to force an update of an UpdateSite. JENKINS-61046

Bug fix

Fix issue with too many open files error when using resource domain. JENKINS-61121

Changelog for 2.222