Permalink
Please
sign in to comment.
Browse files
[JENKINS-43507] Add help files and tidy up misc code changes
- Loading branch information...
Showing
with
178 additions
and 10 deletions.
- +8 −8 src/main/java/org/jenkinsci/plugins/github_branch_source/GitHubSCMSource.java
- +1 −1 src/main/java/org/jenkinsci/plugins/github_branch_source/PullRequestSCMHead.java
- +1 −1 src/main/java/org/jenkinsci/plugins/github_branch_source/PullRequestSCMRevision.java
- +23 −0 src/main/java/org/jenkinsci/plugins/github_branch_source/PullRequestSource.java
- +20 −0 ...in/resources/org/jenkinsci/plugins/github_branch_source/BranchDiscoveryTrait/help-strategyId.html
- +3 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/BranchDiscoveryTrait/help.html
- +15 −0 ...ces/org/jenkinsci/plugins/github_branch_source/ForkPullRequestDiscoveryTrait/help-strategyId.html
- +35 −0 ...esources/org/jenkinsci/plugins/github_branch_source/ForkPullRequestDiscoveryTrait/help-trust.html
- +3 −0 ...main/resources/org/jenkinsci/plugins/github_branch_source/ForkPullRequestDiscoveryTrait/help.html
- +4 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/GitHubSCMNavigator/help-apiUri.html
- +16 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/GitHubSCMNavigator/help-traits.html
- +4 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/GitHubSCMSource/help-apiUri.html
- 0 ...gins/github_branch_source/GitHubSCMSource/{help-scanCredentialsId.html → help-credentialsId.html}
- +3 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/GitHubSCMSource/help-repository.html
- +12 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/GitHubSCMSource/help-traits.html
- +15 −0 ...s/org/jenkinsci/plugins/github_branch_source/OriginPullRequestDiscoveryTrait/help-strategyId.html
- +3 −0 ...in/resources/org/jenkinsci/plugins/github_branch_source/OriginPullRequestDiscoveryTrait/help.html
- +3 −0 ...ain/resources/org/jenkinsci/plugins/github_branch_source/SSHCheckoutTrait/help-credentialsId.html
- +9 −0 src/main/resources/org/jenkinsci/plugins/github_branch_source/SSHCheckoutTrait/help.html
| @@ -0,0 +1,20 @@ | |||
| <div> | |||
| Determines which branches are discovered. | |||
| <dl> | |||
| <dt>Exclude branches that are also filed as PRs</dt> | |||
| <dd> | |||
| If you are discovering origin pull requests, it may not make sense to discover the same changes both as a | |||
| pull request and as a branch. | |||
| </dd> | |||
| <dt>Only branches that are also filed as PRs</dt> | |||
| <dd> | |||
| This option exists to preserve legacy behaviour when upgrading from older versions of the plugin. | |||
| NOTE: If you have an actual use case for this option please file a pull request against this text. | |||
| </dd> | |||
| <dt>All branches</dt> | |||
| <dd> | |||
| Ignores whether the branch is also filed as a pull request and instead discovers all branches on the | |||
| origin repository. | |||
| </dd> | |||
| </dl> | |||
| </div> | |||
| @@ -0,0 +1,3 @@ | |||
| <div> | |||
| Discovers branches on the repository. | |||
| </div> | |||
| @@ -0,0 +1,15 @@ | |||
| <div> | |||
| Determines how pull requests are discovered: | |||
| <ul> | |||
| <li>Discover each pull request once with the discovered revision corresponding to the result of merging with the | |||
| current revision of the target branch | |||
| </li> | |||
| <li>Discover each pull request once with the discovered revision corresponding to the pull request head revision | |||
| without merging | |||
| </li> | |||
| <li>Discover each pull request twice. The first discovered revision corresponds to the result of merging with | |||
| the current revision of the target branch in each scan. The second parallel discovered revision corresponds | |||
| to the pull request head revision without merging | |||
| </li> | |||
| </ul> | |||
| </div> | |||
| @@ -0,0 +1,35 @@ | |||
| <div> | |||
| <p> | |||
| One of the great powers of pull requests is that anyone with read access to a repository can fork it, commit | |||
| some changes to their fork and then create a pull request against the original repository with their changes. | |||
| There are some files stored in source control that are important. For example, a <code>Jenkinsfile</code> | |||
| may contain configuration details to sandbox pull requests in order to mitigate against malicious pull requests. | |||
| In order to protect against a malicious pull request itself modifying the <code>Jenkinsfile</code> to remove | |||
| the protections, you can define the trust policy for pull requests from forks. | |||
| </p> | |||
| <p> | |||
| Other plugins can extend the available trust policies. The default policies are: | |||
| </p> | |||
| <dl> | |||
| <dt>Nobody</dt> | |||
| <dd> | |||
| Pull requests from forks will all be treated as untrusted. This means that where Jenkins requires a | |||
| trusted file (e.g. <code>Jenkinsfile</code>) the contents of that file will be retrieved from the | |||
| target branch on the origin repository and not from the pull request branch on the fork repository. | |||
| </dd> | |||
| <dt>Contributors</dt> | |||
| <dd> | |||
| Pull requests from <a href="https://developer.github.com/v3/repos/collaborators/">collaborators</a> | |||
| to the origin repository will be treated as trusted, all other pull requests from fork repositories | |||
| will be treated as untrusted.. | |||
| Note that if credentials used by Jenkins for scanning the repository does not have permission to | |||
| query the list of contributors to the origin repository then only the origin account will be treated | |||
| as trusted - i.e. this will fall back to <code>Nobody</code>. | |||
| </dd> | |||
| <dt>Everyone</dt> | |||
| <dd> | |||
| All pull requests from forks will be treated as trusted. <strong>NOTE:</strong> this option can be dangerous | |||
| if used on a public repository hosted on Bitbucket Cloud. | |||
| </dd> | |||
| </dl> | |||
| </div> | |||
| @@ -0,0 +1,3 @@ | |||
| <div> | |||
| Discovers pull requests where the origin repository is a fork of the target repository. | |||
| </div> | |||
| @@ -0,0 +1,4 @@ | |||
| <div> | |||
| The server to connect to. The list of servers is configured in the <strong>Manage Jenkins » Configure | |||
| Jenkins › GitHub Enterprise Servers</strong> screen. | |||
| </div> | |||
| @@ -0,0 +1,16 @@ | |||
| <div> | |||
| The behaviours control what is discovered from the GitHub server. The behaviours are grouped into a number | |||
| of categories: | |||
| <dl> | |||
| <dt>Repository</dt> | |||
| <dd>These behaviours determine what repositories get discovered. Only repositories that have at least one | |||
| discovered branch / pull request can themselves be discovered. | |||
| </dd> | |||
| <dt>Within repository</dt> | |||
| <dd>These behaviours determine what gets discovered within each repository. <strong>If you do not configure | |||
| at least one discovery behaviour then nothing will be found!</strong></dd> | |||
| <dt>General</dt> | |||
| <dd>These behaviours affect the configuration of each discovered branch / pull request. | |||
| </dd> | |||
| </dl> | |||
| </div> | |||
| @@ -0,0 +1,4 @@ | |||
| <div> | |||
| The server to connect to. The list of servers is configured in the <strong>Manage Jenkins » Configure | |||
| Jenkins › GitHub Enterprise Servers</strong> screen. | |||
| </div> | |||
File renamed without changes.
| @@ -0,0 +1,3 @@ | |||
| <div> | |||
| The repository to scan. | |||
| </div> | |||
| @@ -0,0 +1,12 @@ | |||
| <div> | |||
| The behaviours control what is discovered from the GitHub repository. The behaviours are grouped into a number | |||
| of categories: | |||
| <dl> | |||
| <dt>Within repository</dt> | |||
| <dd>These behaviours determine what gets discovered. <strong>If you do not configure at least one discovery | |||
| behaviour then nothing will be found!</strong></dd> | |||
| <dt>General</dt> | |||
| <dd>These behaviours affect the configuration of each discovered branch / pull request. | |||
| </dd> | |||
| </dl> | |||
| </div> | |||
| @@ -0,0 +1,15 @@ | |||
| <div> | |||
| Determines how pull requests are discovered: | |||
| <ul> | |||
| <li>Discover each pull request once with the discovered revision corresponding to the result of merging with the | |||
| current revision of the target branch | |||
| </li> | |||
| <li>Discover each pull request once with the discovered revision corresponding to the pull request head revision | |||
| without merging | |||
| </li> | |||
| <li>Discover each pull request twice. The first discovered revision corresponds to the result of merging with | |||
| the current revision of the target branch in each scan. The second parallel discovered revision corresponds | |||
| to the pull request head revision without merging | |||
| </li> | |||
| </ul> | |||
| </div> | |||
| @@ -0,0 +1,3 @@ | |||
| <div> | |||
| Discovers pull requests where the origin repository is the same as the target repository. | |||
| </div> | |||
| @@ -0,0 +1,3 @@ | |||
| <div> | |||
| Credentials used to check out sources. Must be a SSH key based credential. | |||
| </div> | |||
| @@ -0,0 +1,9 @@ | |||
| <div> | |||
| By default the discovered branches / pull requests will all use the same username / password credentials | |||
| that were used for discovery when checking out sources. This means that the checkout will be using the | |||
| <code>https://</code> protocol for the Git repository. | |||
| <p> | |||
| This behaviour allows you to select the SSH private key to be used for checking out sources, which will | |||
| consequently force the checkout to use the <code>ssh://</code> protocol. | |||
| </p> | |||
| </div> | |||
0 comments on commit
46d3cb5