Skip to content

Commit

Permalink
[FIXED JENKINS-28298] Call XStream2#addCriticalField to reject unau…
Browse files Browse the repository at this point in the history 
…thenticated configurations.
  • Loading branch information
@ikedam
ikedam committed Mar 19, 2016
1 parent ad44c7f commit 084778c
Showing 1 changed file with 8 additions and 0 deletions.
8 changes: 8 additions & 0 deletions src/main/java/org/jenkinsci/plugins/authorizeproject/AuthorizeProjectProperty.java
View file
Expand Up @@ -40,7 +40,10 @@

import hudson.DescriptorExtensionList;
import hudson.Extension;
import hudson.init.InitMilestone;
import hudson.init.Initializer;
import hudson.model.DescriptorVisibilityFilter;
import hudson.model.Items;
import hudson.model.Job;
import hudson.model.JobProperty;
import hudson.model.JobPropertyDescriptor;
Expand Down Expand Up @@ -117,6 +120,11 @@ public Authentication authenticate(Queue.Item item) {
return strategy.authenticate(owner, item);
}

@Initializer(after=InitMilestone.PLUGINS_STARTED)
public static void setStrategyCritical() {
Items.XSTREAM2.addCriticalField(AuthorizeProjectProperty.class, "strategy");
}

/**
* Descriptor for {@link AuthorizeProjectProperty}.
*
Expand Down

0 comments on commit 084778c

Please sign in to comment.