Status: Open (View Workflow)
When project based security is on and only authorised users are able to view the workspace. the html plugin should only display the html link to users who are logged in and have workspace access.
We use this plugin to display code coverage data (lcov) which contains source code.
Can security please be intergrated with this plugin?
mcrooney made changes -
|Field||Original Value||New Value|
|Issue Type||Bug [ 1 ]||Improvement [ 4 ]|
|Priority||Critical [ 2 ]||Minor [ 4 ]|
R. Tyler Croy made changes -
|Workflow||JNJira [ 136896 ]||JNJira + In-Review [ 174602 ]|
Richard Bywater made changes -
|Assignee||mcrooney [ mcrooney ]||Richard Bywater [ r2b2_nz ]|
Hm, I imagined it is a report like Javadoc or JUnit, and I don't think those require security. However I can see where arbitrary html reports have the potential to be more sensitive. I don't actively work on this plugin anymore but I'd welcome a patch which added an option (off by default for compatibility) to require workspace permissions to view!