Skip to content

J
jenkins

xxadev / jenkins
与 Fork 源项目一致

从无法访问的项目Fork

通知 3
Star 0
Fork 0
J
jenkins

体验新版 GitCode,发现更多精彩内容 >>

提交 fa4fc30c 编写于 作者: S Stephen Connolly
浏览文件
操作

Tidy up other code paths

上级 e919acb5
隐藏空白更改
内联 并排
Showing with 35 addition and 7 deletion
core/src/main/java/hudson/model/ItemGroupMixIn.java
浏览文件 @ fa4fc30c
......@@ -191,6 +191,8 @@ public abstract class ItemGroupMixIn {
if (descriptor == null) {
throw new Failure("No item type ‘" + mode + "’ is known");
}
descriptor.checkApplicableIn(parent);
acl.getACL().checkCreatePermission(parent, descriptor);
// create empty job and redirect to the project config screen
result = createProject(descriptor, name, true);
......@@ -215,6 +217,8 @@ public abstract class ItemGroupMixIn {
public synchronized <T extends TopLevelItem> T copy(T src, String name) throws IOException {
acl.checkPermission(Item.CREATE);
src.checkPermission(Item.EXTENDED_READ);
src.getDescriptor().checkApplicableIn(parent);
acl.getACL().checkCreatePermission(parent, src.getDescriptor());
T result = (T)createProject(src.getDescriptor(),name,false);
......@@ -250,6 +254,7 @@ public abstract class ItemGroupMixIn {
File configXml = Items.getConfigFile(getRootDirFor(name)).getFile();
final File dir = configXml.getParentFile();
dir.mkdirs();
boolean success = false;
try {
IOUtils.copy(xml,configXml);
......@@ -259,27 +264,34 @@ public abstract class ItemGroupMixIn {
return (TopLevelItem) Items.load(parent, dir);
}
});
acl.getACL().checkCreatePermission(parent, result.getDescriptor());
success = acl.getACL().hasCreatePermission(Jenkins.getAuthentication(), parent, result.getDescriptor())
&& result.getDescriptor().isApplicableIn(parent);
add(result);
ItemListener.fireOnCreated(result);
Jenkins.getInstance().rebuildDependencyGraphAsync();
return result;
} catch (AccessDeniedException e) {
// if anything fails, delete the config file to avoid further confusion
Util.deleteRecursive(dir);
throw e;
} catch (IOException e) {
// if anything fails, delete the config file to avoid further confusion
Util.deleteRecursive(dir);
success = false;
throw e;
} catch (RuntimeException e) {
success = false;
throw e;
} finally {
if (!success) {
// if anything fails, delete the config file to avoid further confusion
Util.deleteRecursive(dir);
}
}
}
public synchronized TopLevelItem createProject( TopLevelItemDescriptor type, String name, boolean notify )
throws IOException {
acl.checkPermission(Item.CREATE);
type.checkApplicableIn(parent);
acl.getACL().checkCreatePermission(parent, type);
Jenkins.getInstance().getProjectNamingStrategy().checkName(name);
......
core/src/main/java/hudson/model/TopLevelItemDescriptor.java
浏览文件 @ fa4fc30c
......@@ -25,6 +25,7 @@ package hudson.model;
import hudson.ExtensionList;
import jenkins.model.Jenkins;
import org.acegisecurity.AccessDeniedException;
import org.kohsuke.stapler.StaplerRequest;
/**
......@@ -71,6 +72,19 @@ public abstract class TopLevelItemDescriptor extends Descriptor<TopLevelItem> {
return true;
}
/**
* Checks if this top level item is applicable within the specified item group.
* <p>
* This is just a convenience function.
* @since 1.582
*/
public final void checkApplicableIn(ItemGroup parent) {
if (!isApplicableIn(parent)) {
throw new AccessDeniedException(
Messages.TopLevelItemDescriptor_NotApplicableIn(getDisplayName(), parent.getFullDisplayName()));
}
}
/**
* Tests if the given instance belongs to this descriptor, in the sense
* that this descriptor can produce items like the given one.
......
core/src/main/resources/hudson/model/Messages.properties
浏览文件 @ fa4fc30c
......@@ -251,6 +251,8 @@ Slave.UnableToLaunch=Unable to launch the slave agent for {0}{1}
Slave.UnixSlave=This is a Unix slave
Slave.WindowsSlave=This is a Windows slave
TopLevelItemDescriptor.NotApplicableIn={0} items are not applicable within {1}
UpdateCenter.DownloadButNotActivated=Downloaded Successfully. Will be activated during the next boot
UpdateCenter.n_a=N/A
View.Permissions.Title=View
......
Markdown is supported
0% .
You are about to add 0 people to the discussion. Proceed with caution.
先完成此消息的编辑!
想要评论请 注册