Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Add a token to Jenkins Tuleap plugin hook trigger payload to be able to authenticate the trigger

Download Browse

A token is added to the payload sent on trigger. Jenkins plugin can call `POST /jenkins_tuleap_hook_trigger_check` to make sure the token is valid and that the request has been sent by Tuleap. Part of request #28257: Missing authentication of webhook requests made to the Jenkins Branch Source plugin Change-Id: I288f0da7cffa7e769c208df84ea1301d8cc1d645

+484 −16
Thomas Gerbet (tgerbet) 2022-08-29 16:54
Thomas Gerbet (tgerbet) 2022-08-30 09:32
68785d2042ff30474bc336c14d682d362adaccc6
9f4a8857e0f9bd2867d7cc34cd47b498be77a6d4
git #tuleap/stable/68785d2042ff30474bc336c14d682d362adaccc6

Modified Files

Side by side diff
Inline diff
Name
M plugins/hudson_git/include/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookPayload.php +12 −4 Go to diff View file
A plugins/hudson_git/include/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenGenerator.php +30 −0 Go to diff View file
A plugins/hudson_git/include/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenGeneratorCryptoBased.php +41 −0 Go to diff View file
A plugins/hudson_git/include/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenVerifier.php +31 −0 Go to diff View file
A plugins/hudson_git/include/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenVerifierController.php +53 −0 Go to diff View file
A plugins/hudson_git/include/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenVerifierCryptoBased.php +65 −0 Go to diff View file
M plugins/hudson_git/include/hudson_gitPlugin.php +24 −3 Go to diff View file
M plugins/hudson_git/tests/unit/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookPayloadTest.php +18 −9 Go to diff View file
A plugins/hudson_git/tests/unit/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenGeneratorCryptoBasedTest.php +40 −0 Go to diff View file
A plugins/hudson_git/tests/unit/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenVerifierControllerTest.php +70 −0 Go to diff View file
A plugins/hudson_git/tests/unit/HudsonGit/Hook/JenkinsTuleapBranchSourcePluginHook/JenkinsTuleapPluginHookTokenVerifierCryptoBasedTest.php +100 −0 Go to diff View file