Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-8757

The permission "scan" ignores the parameter "sonar.branch" when project exists

    Details

      Description

      The web service api/ce/submit API ignores the parameter sonar.branch when checking the scan permission on existing projects.

      To reproduce:

      1. Create a project with a branch (project key should be <project>:<branch>)
      2. Make sure the project has one user with the project-based Execute Analysis permission
      3. Make sure that user does not have the Global Execute Analysis permission
      4. Run the scanner with -Dsonar.projectKey=<project>:<branch> - the analysis executes successfully
      5. Run the scanner with -Dsonar.projectKey=<project> -Dsonar.branch=<branch> - the analysis fails with HTTP 403, whereas it should success

      The permission correctly uses sonar.branch when provisioning the project (first analysis).

        Attachments

          Activity

            People

            • Assignee:
              simon.brandhof Simon Brandhof
              Reporter:
              simon.brandhof Simon Brandhof
            • Votes:
              1 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: