Package org.jenkinsci.plugins

Class GitLabOAuthGroupDetails

java.lang.Object

hudson.security.GroupDetails

org.jenkinsci.plugins.GitLabOAuthGroupDetails

public class GitLabOAuthGroupDetails
extends GroupDetails

Represent a group from GitLab as a group in Jenkins terms. The surprising bits here are that: * GitLab groups exist in a hierarchy while jenkins groups are just a flat namespace * Jenkins groups live in the same namespace as user names * GitLab users can easily be granted the privilege to create new groups and if the name of the gitlab group is allowed to become the name of the jenkins group, then a relatively low-privilege user in gitlab can create a group that clashes with privileged users and groups in jenkins and elevate jenkins privileges that way. The solution is two-fold: * The gitlab groups must be identified as being gitlab groups to avoid clashing with jenkins user names. * The gitlab group hierarchy must be reflected in the name too, to avoid being able to conflate two groups by name

Constructor Summary

Constructors

Constructor	Description
GitLabOAuthGroupDetails(org.gitlab4j.api.models.Group gitlabGroup)	Group based on organization name

Method Summary

Modifier and Type	Method	Description
GrantedAuthority	getAuth()
String	getDisplayName()
String	getName()
String	toString()

Methods inherited from class hudson.security.GroupDetails

getMembers

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Details

GitLabOAuthGroupDetails

public GitLabOAuthGroupDetails(org.gitlab4j.api.models.Group gitlabGroup)

Group based on organization name

Parameters:

gitlabGroup -

Method Details

getName

public String getName()

Specified by:

getName in class GroupDetails

getDisplayName

public String getDisplayName()

Overrides:

getDisplayName in class GroupDetails

toString

public String toString()

Overrides:

toString in class Object

getAuth

public GrantedAuthority getAuth()