-
Bug
-
Resolution: Unresolved
-
Major
-
Jenkins Version: jenkins/jenkins:2.309 (docker/aws-ecs/aws-cdk)
GitHub OAuth Version: 0.33
INFORMATION:
Global Security Authorization: Matrix Based Security
GitHub Company Name: Galaxy (Fictional Name)
GitHub Team Name (1): Detoo
GitHub Team Slug (1): detoo
GitHub Team Name (2): Automation Team
GitHub Team Slug (2): automation-team
ISSUE:
Adding a team with hyphens like GitHub Team Slug (2) to the Matrix Based Security table creates an access is denied issue.
Adding a team with a single word like GitHub Team Slug (1) successfully allows users to logon.
This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied.
WORKAROUND:
Renaming the team to one word, re-adding the newly renamed team (or the GitHub Slug Team (1)), and confirming the access is successful.
STEPS TO REPLICATE/WORKAROUND ISSUE:
- Browse to https:// {JENKINS_HOST}/configureSecurity
- Scroll down to Authorization and select the radio button: Matrix Based Security
- Select button: "Add user or group..."
- In the "User or group name" field type: Galaxy*automation-team
- Confirm the group icon doesn't show a red x indicating it recognizes the team
- Select check box "Administer" for the newly added group
- Select Apply
- Browse to https:// {JENKINS_HOST} with a user from the "Automation Team"
- Confirm "Access is Denied"
- In GitHub, browse to https://github.com/orgs/Galaxy/teams/automation-team/edit
- Change Team Name to one word like "automation"
- Repeat steps 1-8 using the new team: Galaxy*automation
- Confirm user is successfully able to logon
[JENKINS-66586] GitHub Teams with names more than one word deny access to GitHub Users
B
created issue -
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* ** Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. I can replicate the issue by creating a new team with two words, adding to the matrix table, confirming the access is denied. I can resolve the issue by renaming the team to one word, re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE:* # Browse to https://${JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to https://${JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* * *Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. I can replicate the issue by creating a new team with two words, adding to the matrix table, confirming the access is denied. I can resolve the issue by renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$|https://$/]{JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$|https://$/]{JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* * *Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. I can replicate the issue by creating a new team with two words, adding to the matrix table, confirming the access is denied. I can resolve the issue by renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$|https://$/]{JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$|https://$/]{JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2) to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. The issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$|https://$/] \{JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$|https://$/]{JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2) to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. The issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$|https://$/] \{JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$|https://$/]{JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$|https://$/] \{JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$|https://$/] \{JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$|https://$/] \{JENKINS_HOST}/configureSecurity/ # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$|https://$/] \{JENKINS_HOST} with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$ \{JENKINS_HOST/configureSecurity}|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$ \{JENKINS_HOST}|https://jenkins_host] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Priority | Original: Minor [ 4 ] | New: Major [ 3 ] |
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$ \{JENKINS_HOST/configureSecurity}|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$ \{JENKINS_HOST}|https://jenkins_host] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$ \{JENKINS_HOST}/configureSecurity|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$ \{JENKINS_HOST}|https://jenkins_host/] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https://$ \{JENKINS_HOST}/configureSecurity|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https://$ \{JENKINS_HOST}|https://jenkins_host/] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https:// \{JENKINS_HOST}/configureSecurity|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https:// \{JENKINS_HOST}|https://jenkins_host/] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Description |
Original:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word (or adding the GitHub Team Slug (1)), re-adding the newly renamed team, and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https:// \{JENKINS_HOST}/configureSecurity|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https:// \{JENKINS_HOST}|https://jenkins_host/] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
New:
*INFORMATION:*
*Global Security Authorization:* Matrix Based Security *GitHub Company Name:* Galaxy (Fictional Name) *GitHub Team* *Name (1)*: Detoo *GitHub Team Slug (1)*: detoo *GitHub Team Name (2)*: Automation Team *GitHub Team Slug (2):* automation-team *ISSUE:* Adding a team with hyphens like *GitHub Team Slug (2)* to the Matrix Based Security table creates an access is denied issue. Adding a team with a single word like *GitHub Team Slug (1)* successfully allows users to logon. This issue can be replicated by creating a new team with two words, adding to the matrix table, confirming the access is denied. *WORKAROUND:* Renaming the team to one word, re-adding the newly renamed team (or the GitHub Slug Team (1)), and confirming the access is successful. *STEPS TO REPLICATE/WORKAROUND ISSUE:* # Browse to [https:// \{JENKINS_HOST}/configureSecurity|https://jenkins_host/configureSecurity] # Scroll down to Authorization and select the radio button: Matrix Based Security # Select button: "Add user or group..." # In the "User or group name" field type: Galaxy*automation-team # Confirm the group icon doesn't show a red x indicating it recognizes the team # Select check box "Administer" for the newly added group # Select Apply # Browse to [https:// \{JENKINS_HOST}|https://jenkins_host/] with a user from the "Automation Team" # Confirm "Access is Denied" # In GitHub, browse to [https://github.com/orgs/Galaxy/teams/automation-team/edit|https://github.com/orgs/Galaxy/teams/automation-team] # Change Team Name to one word like "automation" # Repeat steps 1-8 using the new team: Galaxy*automation # Confirm user is successfully able to logon |
B
made changes -
| Status | Original: Open [ 1 ] | New: In Progress [ 3 ] |
