[JENKINS-33944] Prevent setting SecurityContext to null

jenkinsci · Mar 31, 2016 · b0f83a7 · b0f83a7
1 parent 4d648bf
commit b0f83a7
Show file tree

Hide file tree

Showing 2 changed files with 69 additions and 16 deletions.
diff --git a/src/main/java/com/cloudbees/plugins/credentials/UserCredentialsProvider.java b/src/main/java/com/cloudbees/plugins/credentials/UserCredentialsProvider.java
@@ -145,8 +145,8 @@ public <C extends Credentials> List<C> getCredentials(@NonNull Class<C> type,
                 UserCredentialsProperty property = user.getProperty(UserCredentialsProperty.class);
                 if (property != null) {
                     // we need to impersonate if the requesting authentication is not the current authentication.
-                    boolean needImpersonation = user.equals(User.current());
-                    SecurityContext old = needImpersonation ? null : ACL.impersonate(user.impersonate());
+                    boolean needImpersonation = !user.equals(User.current());
+                    SecurityContext old = needImpersonation ? ACL.impersonate(user.impersonate()) : null;
                     try {
                         return DomainCredentials
                                 .getCredentials(property.getDomainCredentialsMap(), type, domainRequirements, always());

diff --git a/src/test/java/com/cloudbees/plugins/credentials/CredentialsProviderTest.java b/src/test/java/com/cloudbees/plugins/credentials/CredentialsProviderTest.java
@@ -25,40 +25,56 @@
 
 import com.cloudbees.plugins.credentials.common.UsernamePasswordCredentials;
 import com.cloudbees.plugins.credentials.domains.Domain;
+import com.cloudbees.plugins.credentials.domains.DomainRequirement;
 import com.cloudbees.plugins.credentials.impl.DummyCredentials;
 import com.cloudbees.plugins.credentials.impl.DummyLegacyCredentials;
 import hudson.model.Descriptor;
 import hudson.model.FreeStyleProject;
-import hudson.model.Hudson;
 import hudson.model.Item;
 import hudson.model.ItemGroup;
+import hudson.model.User;
 import hudson.security.ACL;
 import jenkins.model.Jenkins;
 import org.acegisecurity.Authentication;
-import org.jvnet.hudson.test.HudsonTestCase;
+import org.acegisecurity.context.SecurityContext;
+import org.acegisecurity.context.SecurityContextHolder;
+import org.junit.Rule;
+import org.junit.Test;
+import org.jvnet.hudson.test.JenkinsRule;
 
 import java.io.ByteArrayInputStream;
 import java.io.ByteArrayOutputStream;
+import java.io.IOException;
 import java.io.ObjectInputStream;
 import java.io.ObjectOutputStream;
+import java.util.Collections;
 import java.util.List;
 
-public class CredentialsProviderTest extends HudsonTestCase {
+import static org.junit.Assert.assertEquals;
+import static org.junit.Assert.assertFalse;
+import static org.junit.Assert.assertNotNull;
+import static org.junit.Assert.assertTrue;
 
+public class CredentialsProviderTest {
+
+    @Rule
+    public JenkinsRule r = new JenkinsRule();
+
+    @Test
     public void testNoCredentialsUntilWeAddSome() throws Exception {
-        FreeStyleProject project = createFreeStyleProject();
+        FreeStyleProject project = r.createFreeStyleProject();
         assertTrue(CredentialsProvider.lookupCredentials(Credentials.class).isEmpty());
         SystemCredentialsProvider.getInstance().getCredentials().add(
                 new DummyCredentials(CredentialsScope.SYSTEM, "foo", "bar"));
         assertFalse(CredentialsProvider.lookupCredentials(Credentials.class).isEmpty());
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class).isEmpty());
 
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, ACL.SYSTEM).isEmpty());
-        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.ANONYMOUS).isEmpty());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.ANONYMOUS).isEmpty());
         assertFalse("null auth -> ACL.SYSTEM",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Authentication) null).isEmpty());
 
-        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.getInstance()).isEmpty());
+        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.getInstance()).isEmpty());
         assertFalse("null item -> Root",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null).isEmpty());
         assertFalse("null item -> Root",
@@ -72,11 +88,11 @@ public void testNoCredentialsUntilWeAddSome() throws Exception {
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class).isEmpty());
 
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, ACL.SYSTEM).isEmpty());
-        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.ANONYMOUS).isEmpty());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.ANONYMOUS).isEmpty());
         assertFalse("null auth -> ACL.SYSTEM",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Authentication) null).isEmpty());
 
-        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.getInstance()).isEmpty());
+        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.getInstance()).isEmpty());
         assertFalse("null item -> Root",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null).isEmpty());
         assertFalse("null item -> Root",
@@ -88,21 +104,22 @@ public void testNoCredentialsUntilWeAddSome() throws Exception {
                 "manchu");
 
     }
-
+
+    @Test
     public void testNoCredentialsUntilWeAddSomeViaStore() throws Exception {
-        FreeStyleProject project = createFreeStyleProject();
+        FreeStyleProject project = r.createFreeStyleProject();
         assertTrue(CredentialsProvider.lookupCredentials(Credentials.class).isEmpty());
         CredentialsStore store = CredentialsProvider.lookupStores(Jenkins.getInstance()).iterator().next();
         store.addCredentials(Domain.global(), new DummyCredentials(CredentialsScope.SYSTEM, "foo", "bar"));
         assertFalse(CredentialsProvider.lookupCredentials(Credentials.class).isEmpty());
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class).isEmpty());
 
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, ACL.SYSTEM).isEmpty());
-        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.ANONYMOUS).isEmpty());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.ANONYMOUS).isEmpty());
         assertFalse("null auth -> ACL.SYSTEM",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Authentication) null).isEmpty());
 
-        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.getInstance()).isEmpty());
+        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.getInstance()).isEmpty());
         assertFalse("null item -> Root",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null).isEmpty());
         assertFalse("null item -> Root",
@@ -115,11 +132,11 @@ public void testNoCredentialsUntilWeAddSomeViaStore() throws Exception {
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class).isEmpty());
 
         assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, ACL.SYSTEM).isEmpty());
-        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.ANONYMOUS).isEmpty());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.ANONYMOUS).isEmpty());
         assertFalse("null auth -> ACL.SYSTEM",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Authentication) null).isEmpty());
 
-        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Hudson.getInstance()).isEmpty());
+        assertFalse(CredentialsProvider.lookupCredentials(DummyCredentials.class, Jenkins.getInstance()).isEmpty());
         assertFalse("null item -> Root",
                 CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null).isEmpty());
         assertFalse("null item -> Root",
@@ -132,6 +149,41 @@ public void testNoCredentialsUntilWeAddSomeViaStore() throws Exception {
 
     }
 
+    @Test
+    public void testManageUserCredentials() throws IOException {
+        final User alice = User.get("alice");
+        DummyCredentials aliceCred1 = new DummyCredentials(CredentialsScope.USER, "aliceCred1", "bar");
+        DummyCredentials aliceCred2 = new DummyCredentials(CredentialsScope.USER, "aliceCred2", "bar");
+        DummyCredentials aliceCred3 = new DummyCredentials(CredentialsScope.USER, "aliceCred3", "bar");
+
+        r.jenkins.setSecurityRealm(r.createDummySecurityRealm());
+
+        CredentialsStore userStore;
+        SecurityContext ctx = ACL.impersonate(alice.impersonate());
+        userStore = CredentialsProvider.lookupStores(alice).iterator().next();
+        userStore.addCredentials(Domain.global(), aliceCred1);
+        userStore.addCredentials(Domain.global(), aliceCred2);
+
+        assertEquals(2, CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null, alice.impersonate(), Collections.<DomainRequirement>emptyList()).size());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, r.jenkins, ACL.SYSTEM, Collections.<DomainRequirement>emptyList()).isEmpty());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, r.jenkins, Jenkins.ANONYMOUS, Collections.<DomainRequirement>emptyList()).isEmpty());
+
+        // Remove credentials
+        userStore.removeCredentials(Domain.global(), aliceCred2);
+
+        assertEquals(1, CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null, alice.impersonate(), Collections.<DomainRequirement>emptyList()).size());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, r.jenkins, ACL.SYSTEM, Collections.<DomainRequirement>emptyList()).isEmpty());
+        assertTrue(CredentialsProvider.lookupCredentials(DummyCredentials.class, r.jenkins, Jenkins.ANONYMOUS, Collections.<DomainRequirement>emptyList()).isEmpty());
+
+        // Update credentials
+        userStore.updateCredentials(Domain.global(), aliceCred1, aliceCred3);
+
+        assertEquals(1, CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null, alice.impersonate(), Collections.<DomainRequirement>emptyList()).size());
+        assertEquals(aliceCred3.getUsername(), CredentialsProvider.lookupCredentials(DummyCredentials.class, (Item) null, alice.impersonate(), Collections.<DomainRequirement>emptyList()).get(0).getUsername());
+        SecurityContextHolder.setContext(ctx);
+    }
+
+    @Test
     public void testHaveDummyCredentialsType() throws Exception {
         assertTrue(!CredentialsProvider.allCredentialsDescriptors().isEmpty());
         DummyCredentials.DescriptorImpl descriptor = null;
@@ -145,6 +197,7 @@ public void testHaveDummyCredentialsType() throws Exception {
         assertNotNull(new DummyCredentials(CredentialsScope.SYSTEM, "foo", "bar").getDescriptor());
     }
 
+    @Test
     public void testLegacyCredentialMigration() throws Exception {
         DummyLegacyCredentials legacyCredentials = new DummyLegacyCredentials(CredentialsScope.GLOBAL, "foo", "bar");
         ByteArrayOutputStream bos = new ByteArrayOutputStream();