Fix JobDSL requiring empty and UI-only values

[bitwiseman]

• JENKINS issue(s):

  • https://issues.jenkins-ci.org/browse/JENKINS-59321

• Description:

  • The change to use repository URL as a textbox also change the DataboundConstructor. This change means that JobDSL users scripts were broken and they are force to enter blank fields that should be UI implementation details. This change fixes this by switching to a constructor with no arguments and then does different things for UI and JobDSL scenarios. For UI, it uses bindResolve to access the passed JSON and select which settings to use. For JobDSL, it lets the caller provide the information they choose.

• Documentation changes:

  • None. This is an implementation detail that returns the JobDSL behavior to what it was before the issue was introduced. NOTE: in that sense this is a breaking change from v2.5.9, but that is because this was a breaking change from v2.5.3.

• Users/aliases to notify:

  • @joseblas @car-roll @kshultzCB @olamy @dwnusbaum

[bitwiseman]

@darxriggs
Could I ask a favor of you? This PR would be good to get into the next release - it would make JobDSL folks happy. But I don't have the bandwidth to work on it. Would you have any time?

[darxriggs]

I can keep this PR in mind but cannot make any promises when I'll get around to have a look at it in more detail.

[bitwiseman]

Reporting user said this works as expected.
https://issues.jenkins-ci.org/browse/JENKINS-59321?focusedCommentId=383056&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-383056

[car-roll]

👍

[darxriggs]

There should be an extra space after if.

[bitwiseman]

I so want to turn on automatic formatting on this project.

[darxriggs]

Why is that change required / where is it originating from?

[bitwiseman]

I think the toString() is generated from some underlying library. Do you need me to go digging?

[darxriggs]

toString() is from jenkins.scm.api.SCMSource. I am just wondering why this was different before. I guess there are changes (e.g. configuration-as-code upgrade) merged from master into this branch that are not easily visible in the GitHub UI.

[darxriggs]

I guess HTML should be HTTP here.

[darxriggs]

An exception could be thrown to make this invalid usage more clear.

[bitwiseman]

No, we actually don't want to throw an exception here.
One the things that is most striking about this PR is how much of it goes against what we all agree is "good design" because it is serving the needs of data binding. This is another one of those cases. If this gets called more than once due to databinding we don't want to throw.

[dwnusbaum]

In what scenarios are the setters called more than once? That seems surprising to me, is it related to bindResolve? Otherwise, I would think that we definitely would want to throw exceptions as @darxriggs describes, otherwise, something like this ordering of events (only possible via incorrect data binding): setRepoOwner, followed by setRepositoryUrl, followed by setRepository, would silently leave the GitHubSCMSource in an invalid state. Is there a guaranteed order in which setters will be called?

[darxriggs]

Catching a Throwable is not a good idea. What's the intention here?

[bitwiseman]

No matter what error you get from this method call, report it to the UI as a form validation error. It will always look better that way than the default UI exception formatting.

[bitwiseman]

ah, and e.getCause(); returns a throwable.

[darxriggs]

Was there a reason to move this check before the permission check? Even if verifying a URL should not denote a security risk.

[darxriggs]

Is the "successful" information in sb in an error case that useful in the UI?

[bitwiseman]

The sb is built up along the way. It lets people understand how far verification got before failing.

[darxriggs]

The question here is if a with @Deprecated annotated constructor should be used (even if this is a very valid one) or just the default one + setters. Otherwise code checkers / IDEs might complain about this fact.

[darxriggs]

I manually tested using this branch and mvn hpi:run with the following JobDSL examples. These are the 3 ways I am aware of to create a GitHub multi-branch pipeline.

example-1 and example-2 is working fine. But example-3 has an issue. It creates a job without the required settings. Debugging this shows that setRepositoryUrl() is not called for whatever reason.

example-1

JobDSL

multibranchPipelineJob('example-1') {
  branchSources {
    github {
      id('1')
      repoOwner('jenkinsci')
      repository('job-dsl-plugin')
    }
  }
}

Job XML Output

...
<jenkins.branch.BranchSource>
    <source class="org.jenkinsci.plugins.github_branch_source.GitHubSCMSource">
        <id>1</id>
        <scanCredentialsId/>
        <checkoutCredentialsId>SAME</checkoutCredentialsId>
        <repoOwner>jenkinsci</repoOwner>
        <repository>job-dsl-plugin</repository>
        <includes>*</includes>
        <excludes/>
        <buildOriginBranch>true</buildOriginBranch>
        <buildOriginBranchWithPR>true</buildOriginBranchWithPR>
        <buildOriginPRMerge>false</buildOriginPRMerge>
        <buildOriginPRHead>false</buildOriginPRHead>
        <buildForkPRMerge>true</buildForkPRMerge>
        <buildForkPRHead>false</buildForkPRHead>
    </source>
    <strategy class="jenkins.branch.DefaultBranchPropertyStrategy">
        <properties class="empty-list"/>
    </strategy>
</jenkins.branch.BranchSource>
...

example-2

JobDSL

multibranchPipelineJob('example-2') {
  branchSources {
    branchSource {
      source {
        github {
          id('2')
          repoOwner('jenkinsci')
          repository('job-dsl-plugin')
        }
      }
    }
  }
}

Job XML Output

...
<jenkins.branch.BranchSource plugin="branch-api@2.1.2">
    <source plugin="github-branch-source@2.5.9-SNAPSHOT" class="org.jenkinsci.plugins.github_branch_source.GitHubSCMSource">
        <id>2</id>
        <apiUri>https://api.github.com</apiUri>
        <repoOwner>jenkinsci</repoOwner>
        <repository>job-dsl-plugin</repository>
        <traits/>
    </source>
</jenkins.branch.BranchSource>
...

example-3

JobDSL

multibranchPipelineJob('example-3') {
  branchSources {
    branchSource {
      source {
        github {
          id('3')
          repositoryUrl('https://github.com/jenkinsci/job-dsl-plugin.git')
        }
      }
    }
  }
}

Job XML Output

...
<jenkins.branch.BranchSource plugin="branch-api@2.1.2">
    <source plugin="github-branch-source@2.5.9-SNAPSHOT" class="org.jenkinsci.plugins.github_branch_source.GitHubSCMSource">
        <id>3</id>
        <apiUri>https://api.github.com</apiUri>
        <repoOwner/>
        <repository/>
        <traits/>
    </source>
</jenkins.branch.BranchSource>
...

[darxriggs]

I digged a bit deeper regarding the failing example-3.

With some debugging and changing the log level for org.jenkinsci.plugins.structs.describable I found the root cause.

The job is not created correctly via Job DSL because of the customizations in GitHubSCMSource.DescriptorImpl implementing the CustomDescribableModel which are removing repositoryUrl and configuredByUrl.

call chain

• DescribableContext#createInstance
• DescribableModel#instantiate
• GitHubSCMSource#customInstantiate

log

Feb 02, 2020 8:11:09 PM FINE org.jenkinsci.plugins.structs.describable.DescribableModel
class org.jenkinsci.plugins.github_branch_source.GitHubSCMSource$DescriptorImpl translated {traits=[], id=3, repositoryUrl=https://github.com/jenkinsci/job-dsl-plugin.git} to {id=3, traits=[]}

This functionality is completely new to me. Maybe @dwnusbaum and @joseblas can assist here as they have been involved in this customization.

[darxriggs]

Is it really required to be deprecated or just not intended to be used for data-binding? It could be used programatically without problems.

[bitwiseman]

It could be used, but we do not want that. Also, as far as I know, there aren't any other valid uses for these constructors aside from data binding.

[dwnusbaum]

I think it would be ok to leave it undeprecated, even if just for use in tests to avoid misuse of the data binding constructor. Same with new GitHubSCMSource(String, String). If you leave it deprecated, you will get community PRs that convert all of the tests to use the non-deprecated constructor, which may or may not be what you want.

[darxriggs]

Is it really required to be deprecated or just not intended to be used for data-binding? It could be used programatically without problems.

[bitwiseman]

@darxriggs
Thanks for the in-depth testing. I will update to fix what you found.

[dwnusbaum]

Seems ok in general, I added some minor comments. I am a bit surprised by your comment that the setters can be called twice in some scenarios, so I am going to do a bit of testing.

[dwnusbaum]

I think it would be ok to leave it undeprecated, even if just for use in tests to avoid misuse of the data binding constructor. Same with new GitHubSCMSource(String, String). If you leave it deprecated, you will get community PRs that convert all of the tests to use the non-deprecated constructor, which may or may not be what you want.

[dwnusbaum]

Pretty weird, might mask some bugs. Personally, I would rather see an NPE caused by the instance being in an illegal state than have the instance silently do the wrong thing without any way for us to diagnose the issue.

Maybe assign the fields to null and add SuppressFBWarnings mentioning that the setters will make the fields non-null in practice, or change the annotation to @CheckForNull (but that's going to require a bunch of changes in the methods here). Same thing for the defaultIfBlank calls in the setters.

[bitwiseman]

@dwnusbaum Community PR to do that conversion are fine with me. 😄

As to the assigning blank, you and @darxriggs both commented on it. And you're right, but ... this exactly the point of this PR - DataBinding with a complex set of parameters basically demands that we construct the instance in non-ready-to-run state. On the other hand, for any valid use of of an instance these values will not be null. On the other other hand, we don't make them null by default because we want to be able to load/save instances that are in a non-ready-to-run state so that we can modify/fix them to be ready-to-run.

[dwnusbaum]

In what scenarios are the setters called more than once? That seems surprising to me, is it related to bindResolve? Otherwise, I would think that we definitely would want to throw exceptions as @darxriggs describes, otherwise, something like this ordering of events (only possible via incorrect data binding): setRepoOwner, followed by setRepositoryUrl, followed by setRepository, would silently leave the GitHubSCMSource in an invalid state. Is there a guaranteed order in which setters will be called?

[dwnusbaum]

Suggested change

	this.apiUri = json.get("apiUri").toString();
	this.apiUri = setApiUri(json.get("apiUri").toString());

Otherwise we never go through normalizeApiUri on this path.

[dwnusbaum]

What's this for? If it's to try to make it easier for users to understand the stack trace, I would delete these lines, and change the next line from e.getMessage to something like The format of the repository URL is invalid. Please check the help text and adjust the URL, which is probably more helpful unless we are dealing with a bug.

Also though, if the changes in doValidateRepositoryUrlAndCredentials aren't required for the main fix, it might be better to move it to a separate PR.

[bitwiseman]

Okay, you've both said this less than ideal. I see a way to clean it up.

[bitwiseman]

@dwnusbaum

Is there a guaranteed order in which setters will be called?

Short answer, no. If there is an order it is incidental.

[bitwiseman]

I was hoping to include this in today's release, but discussion indicates there's more work to be done here.
I'll circle back to this after releasing v2.6.0.