Skip to content

G
gitlab-ce
Commit cc07cda3 authored by Grzegorz Bizon's avatar Grzegorz Bizon
Browse files
Options

Merge branch... 

Merge branch '13422-empty-security-dashboard-on-public-project-with-found-vulnerabilities' into 'master'

Fix empty security dashboard for public projects

Closes #13422

See merge request gitlab-org/gitlab!17915
parents 42e9daf2 da903949
Hide whitespace changes
Inline Side-by-side
Showing with 40 additions and 16 deletions
changelogs/unreleased/13422-empty-security-dashboard-on-public-project-with-found-vulnerabiliti.yml 0 → 100644
View file @ cc07cda3
---
title: Fix empty security dashboard for public projects
merge_request: 17915
author:
type: fixed
ee/app/models/ee/project.rb
View file @ cc07cda3
......@@ -166,8 +166,6 @@ module EE
default_value_for :packages_enabled, true
delegate :store_security_reports_available?, to: :namespace
accepts_nested_attributes_for :tracing_setting, update_only: true, allow_destroy: true
accepts_nested_attributes_for :alerting_setting, update_only: true
accepts_nested_attributes_for :incident_management_setting, update_only: true
......@@ -186,6 +184,10 @@ module EE
end
end
def can_store_security_reports?
namespace.store_security_reports_available? || public?
end
def tracing_external_url
self.tracing_setting.try(:external_url)
end
......
ee/app/workers/store_security_reports_worker.rb
View file @ cc07cda3
......@@ -8,7 +8,7 @@ class StoreSecurityReportsWorker
def perform(pipeline_id)
Ci::Pipeline.find(pipeline_id).try do |pipeline|
break unless pipeline.project.store_security_reports_available?
break unless pipeline.project.can_store_security_reports?
::Security::StoreReportsService.new(pipeline).execute
end
......
ee/spec/models/project_spec.rb
View file @ cc07cda3
......@@ -333,6 +333,35 @@ describe Project do
end
end
describe '#can_store_security_reports?' do
context 'when the feature is enabled for the namespace' do
it 'returns true' do
stub_licensed_features(sast: true)
project = create(:project, :private)
expect(project.can_store_security_reports?).to be_truthy
end
end
context 'when the project is public' do
it 'returns true' do
stub_licensed_features(sast: false)
project = create(:project, :public)
expect(project.can_store_security_reports?).to be_truthy
end
end
context 'when the feature is disabled for the namespace and the project is not public' do
it 'returns false' do
stub_licensed_features(sast: false)
project = create(:project, :private)
expect(project.can_store_security_reports?).to be_falsy
end
end
end
describe '#deployment_variables' do
context 'when project has a deployment platforms' do
context 'when multiple clusters (EEP) is enabled' do
......@@ -1661,18 +1690,6 @@ describe Project do
end
end
describe '#store_security_reports_available?' do
let(:project) { create(:project) }
subject { project.store_security_reports_available? }
it 'delegates to namespace' do
expect(project.namespace).to receive(:store_security_reports_available?).once.and_call_original
subject
end
end
describe '#has_pool_repository?' do
it 'returns false when there is no pool repository' do
project = create(:project)
......
ee/spec/workers/store_security_reports_worker_spec.rb
View file @ cc07cda3
......@@ -5,7 +5,7 @@ require 'spec_helper'
describe StoreSecurityReportsWorker do
describe '#perform' do
let(:group) { create(:group) }
let(:project) { create(:project, :public, namespace: group) }
let(:project) { create(:project, namespace: group) }
let(:pipeline) { create(:ci_pipeline, ref: 'master', project: project) }
before do
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7