Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-13429

Nested views not showing up with just read perms for View

    XMLWordPrintable

Details

    Description

      Jenkins 1.459 + Nested View Plugin 1.8 + Role-based Authorization Strategy 1.1.2

      User has read permissions for "View" but Jenkins main page is missing Nested views (even if they have sub views with jobs).
      Adding "configure" perms for "View" results in Nested views showing up correctly.

      It looks like it's connected with:
      "Added the View.READ permission to control visibility of views, and updated the default implementation to hide empty views. (issue 3681)"

      Attachments

        Issue Links

          Activity

            dogfood dogfood added a comment -

            Integrated in jenkins_ui-changes_branch #30
            [FIXED JENKINS-13429] (Revision d1b2ba7e4988d26fbb815b8912efb16273c407d4)

            Result = SUCCESS
            Kohsuke Kawaguchi : d1b2ba7e4988d26fbb815b8912efb16273c407d4
            Files :

            • core/src/main/java/hudson/security/AuthorizationStrategy.java
            • changelog.html
            dogfood dogfood added a comment - Integrated in jenkins_ui-changes_branch #30 [FIXED JENKINS-13429] (Revision d1b2ba7e4988d26fbb815b8912efb16273c407d4) Result = SUCCESS Kohsuke Kawaguchi : d1b2ba7e4988d26fbb815b8912efb16273c407d4 Files : core/src/main/java/hudson/security/AuthorizationStrategy.java changelog.html

            It will be in 1.467

            vlatombe Vincent Latombe added a comment - It will be in 1.467

            So which release contains this correction? The changelogs doesn't seem to indicate this.

            vrenjith Renjith Pillai added a comment - So which release contains this correction? The changelogs doesn't seem to indicate this.

            Code changed in jenkins
            User: Vincent Latombe
            Path:
            changelog.html
            core/src/main/java/hudson/security/AuthorizationStrategy.java
            http://jenkins-ci.org/commit/jenkins/d1b2ba7e4988d26fbb815b8912efb16273c407d4
            Log:
            [FIXED JENKINS-13429]
            Backward compatibility is preventing the View.READ permission to apply
            correctly. It actually overrides the View.READ instead of complementing
            it.

            This change only applies default READ right if the View.READ is not
            available, and the user has View.CONFIGURE + the view is not empty.

            scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Vincent Latombe Path: changelog.html core/src/main/java/hudson/security/AuthorizationStrategy.java http://jenkins-ci.org/commit/jenkins/d1b2ba7e4988d26fbb815b8912efb16273c407d4 Log: [FIXED JENKINS-13429] Backward compatibility is preventing the View.READ permission to apply correctly. It actually overrides the View.READ instead of complementing it. This change only applies default READ right if the View.READ is not available, and the user has View.CONFIGURE + the view is not empty.

            Badly in need of this correction. The workaround to give 'Configure' permission for the same seems to be dangerous.

            vrenjith Renjith Pillai added a comment - Badly in need of this correction. The workaround to give 'Configure' permission for the same seems to be dangerous.

            People

              kohsuke Kohsuke Kawaguchi
              carno M S
              Votes:
              11 Vote for this issue
              Watchers:
              13 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: