[JENKINS-13429] Nested views not showing up with just read perms for View - Jenkins Jira

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: Major
Resolution: Fixed
Component/s: nested-view-plugin
Labels:
- jenkins
- plugin
- views

Similar Issues:

Show

Description

Jenkins 1.459 + Nested View Plugin 1.8 + Role-based Authorization Strategy 1.1.2

User has read permissions for "View" but Jenkins main page is missing Nested views (even if they have sub views with jobs).
Adding "configure" perms for "View" results in Nested views showing up correctly.

It looks like it's connected with:
"Added the View.READ permission to control visibility of views, and updated the default implementation to hide empty views. (issue 3681)"

Attachments

Issue Links

is duplicated by

JENKINS-14546 Regular users (others than admin) can't see any nested-views (other than the default one) with role-based authorization strategy activated

Reopened

JENKINS-13942 Cannot display the view for Readonly user

Closed

JENKINS-17315 Nested view no longer shows unless logged in

Closed

is related to

JENKINS-3681 Hide Empty Tabs (Views) in the GUI

Resolved

Activity

Ascending order - Click to sort in descending order

View 5 older comments

Renjith Pillai added a comment - 2012-05-15 05:37

Badly in need of this correction. The workaround to give 'Configure' permission for the same seems to be dangerous.

Renjith Pillai added a comment - 2012-05-15 05:37 Badly in need of this correction. The workaround to give 'Configure' permission for the same seems to be dangerous.

SCM/JIRA link daemon added a comment - 2012-05-23 00:45

Code changed in jenkins
User: Vincent Latombe
Path:
changelog.html
core/src/main/java/hudson/security/AuthorizationStrategy.java
http://jenkins-ci.org/commit/jenkins/d1b2ba7e4988d26fbb815b8912efb16273c407d4
Log:
[FIXED JENKINS-13429]
Backward compatibility is preventing the View.READ permission to apply
correctly. It actually overrides the View.READ instead of complementing
it.

This change only applies default READ right if the View.READ is not
available, and the user has View.CONFIGURE + the view is not empty.

SCM/JIRA link daemon added a comment - 2012-05-23 00:45 Code changed in jenkins User: Vincent Latombe Path: changelog.html core/src/main/java/hudson/security/AuthorizationStrategy.java http://jenkins-ci.org/commit/jenkins/d1b2ba7e4988d26fbb815b8912efb16273c407d4 Log: [FIXED JENKINS-13429] Backward compatibility is preventing the View.READ permission to apply correctly. It actually overrides the View.READ instead of complementing it. This change only applies default READ right if the View.READ is not available, and the user has View.CONFIGURE + the view is not empty.

Renjith Pillai added a comment - 2012-05-23 02:03

So which release contains this correction? The changelogs doesn't seem to indicate this.

Renjith Pillai added a comment - 2012-05-23 02:03 So which release contains this correction? The changelogs doesn't seem to indicate this.

Vincent Latombe added a comment - 2012-05-23 19:52

It will be in 1.467

Vincent Latombe added a comment - 2012-05-23 19:52 It will be in 1.467

dogfood added a comment - 2012-06-08 00:12

Integrated in jenkins_ui-changes_branch #30
[FIXED JENKINS-13429] (Revision d1b2ba7e4988d26fbb815b8912efb16273c407d4)

Result = SUCCESS
Kohsuke Kawaguchi : d1b2ba7e4988d26fbb815b8912efb16273c407d4
Files :

core/src/main/java/hudson/security/AuthorizationStrategy.java
changelog.html

dogfood added a comment - 2012-06-08 00:12 Integrated in jenkins_ui-changes_branch #30 [FIXED JENKINS-13429] (Revision d1b2ba7e4988d26fbb815b8912efb16273c407d4) Result = SUCCESS Kohsuke Kawaguchi : d1b2ba7e4988d26fbb815b8912efb16273c407d4 Files : core/src/main/java/hudson/security/AuthorizationStrategy.java changelog.html

People

Assignee:: Kohsuke Kawaguchi

Reporter:: M S

Votes:: 11 Vote for this issue

Watchers:: 13 Start watching this issue

Dates

Created:: 2012-04-12 15:43

Updated:: 2013-04-08 11:40

Resolved:: 2012-05-23 00:45