|
If you were logged in you would be able to see more operations.
|
|
|
QuickBuild
Created: 11/Mar/26 08:11 AM
Updated: 11/Mar/26 08:11 AM
|
|
| Component/s: |
None
|
| Affects Version/s: |
16.0.0
|
| Fix Version/s: |
None
|
|
|
Original Estimate:
|
Unknown
|
Remaining Estimate:
|
Unknown
|
Time Spent:
|
Unknown
|
|
|
Hello Mr. Robin Shen,
There is an issue when user can trigger build without RUN_BUILD permission:
- 2 configurations: CONF_1, CONF_2
- User only has PROMOTE_BUILD permisison in CONF_1
- User used rest api to request build in CONF_2:
+ Case 1 - Without promotionSource in xml: Build cannot start
+ Case 2 - With promotionSource includes a buildId in CONF_1 in xml: A build started in CONF_2
Please help to investigata case 2
|
|
Description
|
Hello Mr. Robin Shen,
There is an issue when user can trigger build without RUN_BUILD permission:
- 2 configurations: CONF_1, CONF_2
- User only has PROMOTE_BUILD permisison in CONF_1
- User used rest api to request build in CONF_2:
+ Case 1 - Without promotionSource in xml: Build cannot start
+ Case 2 - With promotionSource includes a buildId in CONF_1 in xml: A build started in CONF_2
Please help to investigata case 2 |
Show » |
| No changes have yet been made on this issue.
|
|
Bug
Open
Major
Users can trigger builds via promotion without proper permissions