Blue Ocean Ignores Role Strategy Restrictions – Users Can Still Trigger Pipelines

Even though we’re controlling permissions using the Role Strategy Plugin, all users seem to have elevated privileges in Blue Ocean.

Users who only have Overall/Read and Job/Read permissions are still able to access Blue Ocean and freely trigger pipeline executions.

Is there any way to prevent this behavior without blocking access to Blue Ocean entirely?