Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-22937

Unauthenticated REST API requests cause jobConfigHistory to throw HTTP 503 error

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      Unauthenticated (anonymous) REST API requests to jobControlHistory will cause a 503 HTTP error to be returned because the thrown org.acegisecurity.AccessDeniedException exception handler in Jenkins doesn't know that Stapler is in the middle of a serialization request.

      Instead of exposing getJobConfigs(), and getSlaveConfigs() methods, wrap them with REST equivalents and return an empty list object.

        Attachments

          Activity

          Hide
          scm_issue_link SCM/JIRA link daemon added a comment -

          Code changed in jenkins
          User: Charles Stephens
          Path:
          src/main/java/hudson/plugins/jobConfigHistory/ComputerConfigHistoryAction.java
          src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryProjectAction.java
          src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryRootAction.java
          http://jenkins-ci.org/commit/jobConfigHistory-plugin/49e499cc2bd84035dd43d359f96087540651ee7f
          Log:
          [FIXED JENKINS-22937] Handle anonymous/unauthorized REST API requests more gracefully.

          Adjusted REST API visibility settings to avoid serializing long histories at depth=0.

          Show
          scm_issue_link SCM/JIRA link daemon added a comment - Code changed in jenkins User: Charles Stephens Path: src/main/java/hudson/plugins/jobConfigHistory/ComputerConfigHistoryAction.java src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryProjectAction.java src/main/java/hudson/plugins/jobConfigHistory/JobConfigHistoryRootAction.java http://jenkins-ci.org/commit/jobConfigHistory-plugin/49e499cc2bd84035dd43d359f96087540651ee7f Log: [FIXED JENKINS-22937] Handle anonymous/unauthorized REST API requests more gracefully. Adjusted REST API visibility settings to avoid serializing long histories at depth=0.

            People

            Assignee:
            cfs Charles Stephens
            Reporter:
            cfs Charles Stephens
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: