-
Bug
-
Resolution: Fixed
-
Critical
-
gitlab server (www.gitlab.com)
jenkins docker official image 2.222.4 (occurs in 2.263.1 as well)
plugins and configuration attached as files.
steps to recreate:
- create a folder
- enable folder based permissions
- add a user and grant all the available permissions
- create a multibranch job in the folder
- in branch source, choose gitlab.
- user gets the following error message between the "projects" section and the "Behaviours" section:
------------------------------
Access Denied
<username> is missing the Job/Build permission
--------------------------------
workaround:
granting the user the Job/Build permission in "Configure Global Security " solves the problem, but this is major breach in security.
it appears as if the plugin doesn't take into account the permissions granted to the user at the folder level.
- links to
[JENKINS-62478] users unable to configure multibranch jobs without global Job/Build permission
MARY Olivier
added a comment - Hi there,
Same problem for us. Any solution before fix ? I can't "open bar" for all users just for that..........
MARY Olivier
added a comment - Hi there,
Same problem for us. Any solution before fix ? I can't "open bar" for all users just for that..........
Sébastien
added a comment - Hi,
Same problem. Does anyone have a solution?
Thanks. 
Mikhail Marchenko
added a comment - Hi,
i tied to fix this issue. But i don't know somebody who can review my PR.
Mikhail Marchenko
added a comment - Hi,
i tied to fix this issue. But i don't know somebody who can review my PR. 
Amit Dar
added a comment - mymarche, can you provide a link to your PR?
can you also provide an installable version of your fix so we can test it ourselves?
it would be greatly appreciated.
Amit Dar
added a comment - mymarche , can you provide a link to your PR?
can you also provide an installable version of your fix so we can test it ourselves?
it would be greatly appreciated. Mikhail Marchenko
added a comment - 
Mikhail Marchenko
added a comment - amidar , of course
link PR-156
And installable version: gitlab-branch-source.hpi Amit Dar
added a comment - mymarche, your fix is working as expected!
please file the PR with the plugin maintainer ASAP.
your effort is greatly appreciated!
P.S. I didn't check ALL the plugin capabilities, so I guess anyone who's willing to add more tests is welcome.
Amit Dar
added a comment - mymarche , your fix is working as expected!
please file the PR with the plugin maintainer ASAP.
your effort is greatly appreciated!
P.S. I didn't check ALL the plugin capabilities, so I guess anyone who's willing to add more tests is welcome. Amit Dar
added a comment - surenpi , is there a way to speed up handling of this issue? Hi,
We tried the PR on our environment too. The bug is no more present.
Our security have to check the source code. But we hope the PR will be merged and a new version delivered.
Mikhail Marchenko
added a comment - Mikhail Marchenko
added a comment - https://github.com/jenkinsci/gitlab-branch-source-plugin/pull/156 
surenpi, please take a look at this issue, it includes simple reconstruction instructions, and is causing us a lot of pain...