Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-31649

SECURITY-186 regression: non-item tasks hidden

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      The fix for SECURITY-186 hides a lot of other tasks that should not be hidden... rather than testing for tasks that implement Item it should be checking against tasks that implement AccessControlled so that tasks can still remain visible

        Attachments

          Issue Links

            Activity

            Hide
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Jesse Glick
            Path:
            CHANGES.md
            aggregator/src/test/java/org/jenkinsci/plugins/workflow/steps/ExecutorStepTest.java
            support/src/main/java/org/jenkinsci/plugins/workflow/support/steps/ExecutorStepExecution.java
            http://jenkins-ci.org/commit/workflow-plugin/b9376a9f906dbb142acfe605be9c8358bcd66c3d
            Log:
            JENKINS-31649 When supported by Jenkins core, display queue items to authorized users.

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Jesse Glick Path: CHANGES.md aggregator/src/test/java/org/jenkinsci/plugins/workflow/steps/ExecutorStepTest.java support/src/main/java/org/jenkinsci/plugins/workflow/support/steps/ExecutorStepExecution.java http://jenkins-ci.org/commit/workflow-plugin/b9376a9f906dbb142acfe605be9c8358bcd66c3d Log: JENKINS-31649 When supported by Jenkins core, display queue items to authorized users.
            Hide
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Jesse Glick
            Path:
            CHANGES.md
            aggregator/src/test/java/org/jenkinsci/plugins/workflow/steps/ExecutorStepTest.java
            support/src/main/java/org/jenkinsci/plugins/workflow/support/steps/ExecutorStepExecution.java
            http://jenkins-ci.org/commit/workflow-plugin/8dd67dd83e0ff60cdd284ae14e6316006c0eff34
            Log:
            Merge pull request #258 from jglick/PlaceholderTask-visibility-JENKINS-31649

            JENKINS-31649 Integrate with post-SECURITY-186 queue item display policy

            Compare: https://github.com/jenkinsci/workflow-plugin/compare/3d60b260ee0c...8dd67dd83e0f

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Jesse Glick Path: CHANGES.md aggregator/src/test/java/org/jenkinsci/plugins/workflow/steps/ExecutorStepTest.java support/src/main/java/org/jenkinsci/plugins/workflow/support/steps/ExecutorStepExecution.java http://jenkins-ci.org/commit/workflow-plugin/8dd67dd83e0ff60cdd284ae14e6316006c0eff34 Log: Merge pull request #258 from jglick/PlaceholderTask-visibility- JENKINS-31649 JENKINS-31649 Integrate with post-SECURITY-186 queue item display policy Compare: https://github.com/jenkinsci/workflow-plugin/compare/3d60b260ee0c...8dd67dd83e0f
            Hide
            scm_issue_link SCM/JIRA link daemon added a comment -

            Code changed in jenkins
            User: Stephen Connolly
            Path:
            core/src/main/java/hudson/model/Queue.java
            http://jenkins-ci.org/commit/jenkins/b51653d2bfa1a8b4e854bb0991202879e7228da8
            Log:
            [FIXED JENKINS-31649] Check should be against AccessControlled and Permission.READ

            • The previous check was to narrow.
            • We now check on AccessControlled (which is implemented by Item)
            • We now also check on Permission.READ (which is the generic read permission)

            This should allow subtasks who's task may not be an Item to at least implement AccessControlled to alow visibility.

            There remains an open question as to whether tasks that are not AccessControlled should ever be visible in the UI

            (cherry picked from commit cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2)

            Show
            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Stephen Connolly Path: core/src/main/java/hudson/model/Queue.java http://jenkins-ci.org/commit/jenkins/b51653d2bfa1a8b4e854bb0991202879e7228da8 Log: [FIXED JENKINS-31649] Check should be against AccessControlled and Permission.READ The previous check was to narrow. We now check on AccessControlled (which is implemented by Item) We now also check on Permission.READ (which is the generic read permission) This should allow subtasks who's task may not be an Item to at least implement AccessControlled to alow visibility. There remains an open question as to whether tasks that are not AccessControlled should ever be visible in the UI (cherry picked from commit cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2)
            Hide
            dogfood dogfood added a comment -

            Integrated in jenkins_main_trunk #4373
            [FIXED JENKINS-31649] Check should be against AccessControlled and Permission.READ (Revision cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2)
            JENKINS-31649 Tidy-up javadoc comments after merge of JENKINS-31649 (Revision e930da45ff4c48dfcaadc57e01485051d2a04b1d)
            [FIXED JENKINS-31649] Check should be against AccessControlled and Permission.READ (Revision b51653d2bfa1a8b4e854bb0991202879e7228da8)

            Result = SUCCESS
            stephen connolly : cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2
            Files :

            • core/src/main/java/hudson/model/Queue.java

            stephen connolly : e930da45ff4c48dfcaadc57e01485051d2a04b1d
            Files :

            • core/src/main/java/hudson/model/Queue.java
            • core/src/main/java/hudson/model/queue/AbstractQueueTask.java

            ogondza : b51653d2bfa1a8b4e854bb0991202879e7228da8
            Files :

            • core/src/main/java/hudson/model/Queue.java
            Show
            dogfood dogfood added a comment - Integrated in jenkins_main_trunk #4373 [FIXED JENKINS-31649] Check should be against AccessControlled and Permission.READ (Revision cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2) JENKINS-31649 Tidy-up javadoc comments after merge of JENKINS-31649 (Revision e930da45ff4c48dfcaadc57e01485051d2a04b1d) [FIXED JENKINS-31649] Check should be against AccessControlled and Permission.READ (Revision b51653d2bfa1a8b4e854bb0991202879e7228da8) Result = SUCCESS stephen connolly : cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2 Files : core/src/main/java/hudson/model/Queue.java stephen connolly : e930da45ff4c48dfcaadc57e01485051d2a04b1d Files : core/src/main/java/hudson/model/Queue.java core/src/main/java/hudson/model/queue/AbstractQueueTask.java ogondza : b51653d2bfa1a8b4e854bb0991202879e7228da8 Files : core/src/main/java/hudson/model/Queue.java
            Hide
            dogfood dogfood added a comment -

            Integrated in jenkins_2.0 #5
            [FIXED JENKINS-31649] Check should be against AccessControlled and (Revision cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2)
            JENKINS-31649 Tidy-up javadoc comments after merge of JENKINS-31649 (Revision e930da45ff4c48dfcaadc57e01485051d2a04b1d)
            [FIXED JENKINS-31649] Check should be against AccessControlled and (Revision b51653d2bfa1a8b4e854bb0991202879e7228da8)

            Result = SUCCESS
            stephen connolly : cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2
            Files :

            • core/src/main/java/hudson/model/Queue.java

            stephen connolly : e930da45ff4c48dfcaadc57e01485051d2a04b1d
            Files :

            • core/src/main/java/hudson/model/Queue.java
            • core/src/main/java/hudson/model/queue/AbstractQueueTask.java

            ogondza : b51653d2bfa1a8b4e854bb0991202879e7228da8
            Files :

            • core/src/main/java/hudson/model/Queue.java
            Show
            dogfood dogfood added a comment - Integrated in jenkins_2.0 #5 [FIXED JENKINS-31649] Check should be against AccessControlled and (Revision cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2) JENKINS-31649 Tidy-up javadoc comments after merge of JENKINS-31649 (Revision e930da45ff4c48dfcaadc57e01485051d2a04b1d) [FIXED JENKINS-31649] Check should be against AccessControlled and (Revision b51653d2bfa1a8b4e854bb0991202879e7228da8) Result = SUCCESS stephen connolly : cf1fdf98e435b4c7df54f1a8e958d185f1a0f3d2 Files : core/src/main/java/hudson/model/Queue.java stephen connolly : e930da45ff4c48dfcaadc57e01485051d2a04b1d Files : core/src/main/java/hudson/model/Queue.java core/src/main/java/hudson/model/queue/AbstractQueueTask.java ogondza : b51653d2bfa1a8b4e854bb0991202879e7228da8 Files : core/src/main/java/hudson/model/Queue.java

              People

              • Assignee:
                stephenconnolly Stephen Connolly
                Reporter:
                stephenconnolly Stephen Connolly
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: