Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-22937

Unauthenticated REST API requests cause jobConfigHistory to throw HTTP 503 error

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      Unauthenticated (anonymous) REST API requests to jobControlHistory will cause a 503 HTTP error to be returned because the thrown org.acegisecurity.AccessDeniedException exception handler in Jenkins doesn't know that Stapler is in the middle of a serialization request.

      Instead of exposing getJobConfigs(), and getSlaveConfigs() methods, wrap them with REST equivalents and return an empty list object.

        Attachments

          Activity

          Hide
          scm_issue_link SCM/JIRA link daemon added a comment -

          Code changed in jenkins
          User: Charles Stephens
          Path:
          src/main/java/hudson/plugins/jobConfigHistory/ComputerConfigHistoryAction.java
          src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryProjectAction.java
          src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryRootAction.java
          http://jenkins-ci.org/commit/jobConfigHistory-plugin/49e499cc2bd84035dd43d359f96087540651ee7f
          Log:
          [FIXED JENKINS-22937] Handle anonymous/unauthorized REST API requests more gracefully.

          Adjusted REST API visibility settings to avoid serializing long histories at depth=0.

          Show
          scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Charles Stephens Path: src/main/java/hudson/plugins/jobConfigHistory/ComputerConfigHistoryAction.java src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryProjectAction.java src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryRootAction.java http://jenkins-ci.org/commit/jobConfigHistory-plugin/49e499cc2bd84035dd43d359f96087540651ee7f Log: [FIXED JENKINS-22937] Handle anonymous/unauthorized REST API requests more gracefully. Adjusted REST API visibility settings to avoid serializing long histories at depth=0.

            People

            • Assignee:
              cfs Charles Stephens
              Reporter:
              cfs Charles Stephens
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: