Coming to realize that, unless you’re using Jenkins with a paid cloud service that supports real authentication/authorization, no one uses Jenkins with a proper security setup, because there are no plugins or configuration options that support such a thing.