Branch: refs/heads/master
Home: https://github.com/jenkinsci/jenkins
Commit: 983ee33df1f790743b867919df4af0e5a929ec25
https://github.com/jenkinsci/jenkins/commit/983ee33df1f790743b867919df4af0e5a929ec25
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M test/src/main/java/org/jvnet/hudson/test/JenkinsRule.java
Log Message:
-----------
added a convenience method
Commit: 86fcc4733d8513a36d4a4e4395cc66c43fee4575
https://github.com/jenkinsci/jenkins/commit/86fcc4733d8513a36d4a4e4395cc66c43fee4575
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M
test/src/test/groovy/hudson/security/TokenBasedRememberMeServices2Test.groovy
Log Message:
-----------
added a convenience method.
Commit: 0e339d7a454df119995b896eea14f09a099f99b5
https://github.com/jenkinsci/jenkins/commit/0e339d7a454df119995b896eea14f09a099f99b5
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M changelog.html
M core/src/main/java/hudson/model/User.java
A core/src/main/java/jenkins/security/LastGrantedAuthoritiesProperty.java
A
test/src/test/java/jenkins/security/LastGrantedAuthoritiesPropertyTest.groovy
Log Message:
-----------
[JENKINS-20064]
Jenkins now remembers the authorities (read group memberships) that the user
had carried when he/she last time interactively logged in.
This information is exposed via User.impersonate(), which is used when using
Jenkins SSH, Jenkins CLI, or access via API tokens.
Previously this was impossible for a subset of SecurityRealms that does not
allow us to read group membership information without
successful login (such as Active Directory, OpenID, etc.)
For security reasons, if the backend determines that the user does not exist
(as opposed to the backend who cannot tell if the user
exists or not), then the impersonation will fail.
I need to check AD plugin is reporting a failure correctly in this case, before
marking as JENKINS-20064 fixed.
Commit: b173e8d403d37e37888b3b6039c667efc352ecad
https://github.com/jenkinsci/jenkins/commit/b173e8d403d37e37888b3b6039c667efc352ecad
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M core/pom.xml
Log Message:
-----------
Using latest and greatest (take 2
Commit: bded790f4651459b2ac41d9f96f2393204b41012
https://github.com/jenkinsci/jenkins/commit/bded790f4651459b2ac41d9f96f2393204b41012
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M core/src/main/java/hudson/model/User.java
M core/src/main/java/jenkins/security/ApiTokenFilter.java
Log Message:
-----------
User.impersonate() now does the loadUserDetailsByName call.
So ApiTokenFilter no longer needs to do that.
Commit: 27d208b0a9327a181c10fb5abbe7a56f5bf64825
https://github.com/jenkinsci/jenkins/commit/27d208b0a9327a181c10fb5abbe7a56f5bf64825
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M core/src/main/java/hudson/model/User.java
M core/src/main/java/hudson/security/AbstractPasswordBasedSecurityRealm.java
M core/src/main/java/hudson/security/TokenBasedRememberMeServices2.java
A core/src/main/java/jenkins/security/ImpersonatingUserDetailsService.java
M core/src/main/java/jenkins/security/LastGrantedAuthoritiesProperty.java
Log Message:
-----------
Moving impersonation logic once again.
I think the cleanest place to do this is as a filter of UserDetailsService.
The problem is that SecurityRealm defines loadUserByName method, which
AbstractPasswordBasedSecurityRealm overrides
Commit: a4e29ae0df79dbdd8223bfdd85598f293760a8e3
https://github.com/jenkinsci/jenkins/commit/a4e29ae0df79dbdd8223bfdd85598f293760a8e3
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M core/src/main/java/hudson/security/TokenBasedRememberMeServices2.java
Log Message:
-----------
Doing impersonation here as well.
See javadoc for discussion why this possibly redundant use is desirable
Commit: accc0e59d3d7ced94de357be4a8009a1005dd03d
https://github.com/jenkinsci/jenkins/commit/accc0e59d3d7ced94de357be4a8009a1005dd03d
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M core/src/main/java/jenkins/security/ImpersonatingUserDetailsService.java
Log Message:
-----------
NPE fix
Commit: b078ac62f5b6aae6acd5f468061e13d66b10a6cc
https://github.com/jenkinsci/jenkins/commit/b078ac62f5b6aae6acd5f468061e13d66b10a6cc
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M
test/src/test/groovy/hudson/security/TokenBasedRememberMeServices2Test.groovy
Log Message:
-----------
added another test for the basic remember-me flow
Commit: b478ca8904453f9a47c25c4c391877b4f54b1a5d
https://github.com/jenkinsci/jenkins/commit/b478ca8904453f9a47c25c4c391877b4f54b1a5d
Author: Kohsuke Kawaguchi <[email protected]>
Date: 2014-03-11 (Tue, 11 Mar 2014)
Changed paths:
M core/src/main/java/hudson/model/Computer.java
M core/src/main/java/hudson/model/Run.java
M test/src/main/java/org/jvnet/hudson/test/JenkinsRule.java
Log Message:
-----------
Merge branch 'master' of github.com:jenkinsci/jenkins
Compare:
https://github.com/jenkinsci/jenkins/compare/e1272b58590e...b478ca890445
--
You received this message because you are subscribed to the Google Groups
"Jenkins Commits" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/d/optout.
