*** Joins: kirillka (~Miranda@195.242.142.17) | 00:03 | |
*** Quits: chris38 (~chris38@AGrenoble-652-1-57-177.w86-200.abo.wanadoo.fr) (Read error: Operation timed out) | 01:32 | |
*** Joins: chris38 (~chris38@AGrenoble-652-1-163-92.w86-211.abo.wanadoo.fr) | 01:44 | |
*** Joins: Paul_46 (~IceChat09@2001:470:9310:aaaa:b59a:e6ff:b3ce:84e5) | 04:44 | |
*** Joins: chris38` (~chris38@AGrenoble-652-1-89-235.w90-28.abo.wanadoo.fr) | 06:09 | |
*** Quits: chris38 (~chris38@AGrenoble-652-1-163-92.w86-211.abo.wanadoo.fr) (Ping timeout: 272 seconds) | 06:09 | |
*** Quits: kirillka (~Miranda@195.242.142.17) (Quit: kirillka) | 10:00 | |
zyro | is it intentional that i can view source-integration changesets by id if my global role matches the plugins view-threshold but the changeset does belong to a project where i do not have access | 11:07 |
---|---|---|
zyro | i.e. why does source-integration bypass project authorization? | 11:08 |
jreese | zyro: because repos in source integration are not attached to any projects | 12:02 |
jreese | they're intentionally disconnected so that you can have a single repository work for multiple projects, which is crucial for teams using SVN | 12:04 |
zyro | but somehow changesets are linked up to issues | 12:05 |
jreese | yes, my point is that because repos are global rather than per-project, they can link changesets to issues from any project | 12:06 |
zyro | so shouldnt the check be like if a user has sufficient access to any project that has a issue thats linked with that changeset? | 12:06 |
Paul_46 | jreese: ever used lithium? | 12:07 |
jreese | a) that would be a lot more computationally expensive, and b) that wouldn't work for changesets that aren't attached to any issue | 12:07 |
jreese | Paul_46: no | 12:07 |
zyro | okay then another try ... is there a way to have the source-integration plugin just do its linking part to the vcs vieweing tool? | 12:10 |
jreese | so basically, you want to know if there's a way to have it not pull in file data? | 12:11 |
zyro | that would be one part i guess | 12:11 |
zyro | or maybe i am approaching it wrong at all | 12:12 |
zyro | point is, i got different groups of users | 12:12 |
zyro | in vcs and mantis | 12:12 |
zyro | who are not supposed to be able to view each others stuff | 12:12 |
zyro | issues and source | 12:12 |
jreese | I'm thinking it would probably require quite a bit of changes to the source integration system to allow for that sort of requirement | 12:15 |
jreese | how many different groups are there? is there any overlap in the users? would it be easy to run a different mantis install for each group? | 12:17 |
zyro | hmm | 12:23 |
zyro | one more angle... looking at the plugin source there seems to be a bug_id - change_id join table | 12:24 |
zyro | containing the linked up matches i guess | 12:25 |
vBm | jreese, github integration plugin that was updated few days ago ... it's still not automated for me ... i still need to import latest changes ... any way to see why it fails to be automated (it's set properly on github hooks on admin page of project) | 12:25 |
jreese | not sure, I haven't been able to test it from my side yet | 12:26 |
vBm | jreese, ok ... thanks for the info | 12:33 |
zyro | well | 13:18 |
zyro | what i did now is secure every file in plugin/pages with | 13:20 |
zyro | access_ensure_global_level( plugin_config_get( 'manage_threshold' ) ); | 13:20 |
zyro | and removed the display link from Source.ViewAPI.php | 13:21 |
zyro | so a developer with view threshold for source-plugin only sees the changesets with links to the external vcs tool in the issue page | 13:21 |
zyro | kind crippled functionality but enough for now ... as long you do not see some sort of serious problem there | 13:22 |
*** chris38` is now known as chris38 | 15:44 | |
*** Joins: asm89 (~asm89@unaffiliated/asm89) | 16:34 | |
*** Quits: dhx1 (~anonymous@60-242-247-232.static.tpgi.com.au) (Quit: Leaving) | 18:46 | |
*** Quits: asm89 (~asm89@unaffiliated/asm89) (Quit: bye!) | 19:47 | |
*** Quits: sdfjkljkdfsljkl (~sdfjkljkd@static.96.23.63.178.clients.your-server.de) (Remote host closed the connection) | 20:00 | |
*** Joins: sdfjkljkdfsljkl (~sdfjkljkd@static.96.23.63.178.clients.your-server.de) | 20:00 | |
*** Quits: Paul_46 (~IceChat09@2001:470:9310:aaaa:b59a:e6ff:b3ce:84e5) (Quit: Make it idiot proof and someone will make a better idiot.) | 20:22 | |
*** Joins: Protogenes2 (~Protogene@cmnz-d9bab1c8.pool.mediaWays.net) | 23:07 | |
*** Quits: Protogenes (~Protogene@cmnz-4db37a54.pool.mediaWays.net) (Disconnected by services) | 23:07 | |
*** Protogenes2 is now known as Protogenes | 23:51 |
Generated by irclog2html.py 2.10.0 by Marius Gedminas - find it at mg.pov.lt!