Uploaded image for project: 'SonarQube'
  1. SonarQube
  2. SONAR-8757

The permission "scan" ignores the parameter "sonar.branch" when project exists

    Details

      Description

      The web service api/ce/submit API ignores the parameter sonar.branch when checking the scan permission on existing projects.

      To reproduce:

      1. Create a project with a branch (project key should be <project>:<branch>)
      2. Make sure the project has one user with the project-based Execute Analysis permission
      3. Make sure that user does not have the Global Execute Analysis permission
      4. Run the scanner with -Dsonar.projectKey=<project>:<branch> - the analysis executes successfully
      5. Run the scanner with -Dsonar.projectKey=<project> -Dsonar.branch=<branch> - the analysis fails with HTTP 403, whereas it should success

      The permission correctly uses sonar.branch when provisioning the project (first analysis).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                simon.brandhof Simon Brandhof
                Reporter:
                simon.brandhof Simon Brandhof
              • Votes:
                1 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: