lgtm plugin should use trigger.TrustedUser #13740

nikhita · 2019-08-02T13:35:44Z

The lgtm plugin currently does a IsCollaborator() check to determine if a user can lgtm a PR or not. Which means that even if only_org_members: true is defined in the trigger config, outside collaborators are able to lgtm PRs.

To fix this, we should use trigger.TrustedUser() to determine whether a user is trusted or not.

Additionally, if skip_collaborators: true is configured, we can then skip the trigger.TrustedUser() check.

/sig contributor-experience
/cc @cblecker @spiffxp @alvaroaleman @stevekuznetsov
related: #13002

Happy to work on this if this makes sense.

The text was updated successfully, but these errors were encountered:

nikhita · 2019-08-02T13:38:15Z

This is mainly concerning because doing a /lgtm can trigger tests.

nikhita · 2019-08-02T13:39:34Z

related: #12785

cblecker · 2019-08-02T18:41:22Z

I just.. I really dislike the whole "trusted org" logic set. That the "trust" is somehow tied to not the org the actual repo is in. If that logic wasn't there, I wouldn't even have a second thought on this.

cblecker · 2019-08-02T18:41:50Z

ref:

test-infra/prow/plugins/trigger/trigger.go

Lines 153 to 185 in 5022463

    
           // TrustedUser returns true if user is trusted in repo. 
        
           // Trusted users are either repo collaborators, org members or trusted org members. 
        
           func TrustedUser(ghc trustedUserClient, onlyOrgMembers bool, trustedOrg, user, org, repo string) (bool, error) { 
        
           	// First check if user is a collaborator, assuming this is allowed 
        
           	if !onlyOrgMembers { 
        
           		if ok, err := ghc.IsCollaborator(org, repo, user); err != nil { 
        
           			return false, fmt.Errorf("error in IsCollaborator: %v", err) 
        
           		} else if ok { 
        
           			return true, nil 
        
           		} 
        
           	} 
        
           	// TODO(fejta): consider dropping support for org checks in the future. 
        
           	// Next see if the user is an org member 
        
           	if member, err := ghc.IsMember(org, user); err != nil { 
        
           		return false, fmt.Errorf("error in IsMember(%s): %v", org, err) 
        
           	} else if member { 
        
           		return true, nil 
        
           	} 
        
           	// Determine if there is a second org to check 
        
           	if trustedOrg == "" || trustedOrg == org { 
        
           		return false, nil // No trusted org and/or it is the same 
        
           	} 
        
           	// Check the second trusted org. 
        
           	member, err := ghc.IsMember(trustedOrg, user) 
        
           	if err != nil { 
        
           		return false, fmt.Errorf("error in IsMember(%s): %v", trustedOrg, err) 
        
           	} 
        
           	return member, nil 
        
           }

alvaroaleman · 2019-08-02T18:47:54Z

I just.. I really dislike the whole "trusted org" logic set. That the "trust" is somehow tied to not the org the actual repo is in. If that logic wasn't there, I wouldn't even have a second thought on this.

Thats a fair point but IMHO an orthogonal issue. The issue we have here is that we have code to determine if a user is trusted and the LGTM plugin does something that requires trust (starting tests) without calling into that code but instead using a different check.

Independently of what TrustedUser actually does and if that always makes sense, IMHO everything that starts tests on a PullRequest should call into it to check if the user who triggered the event is trusted.

spiffxp · 2019-08-06T19:01:12Z

/area prow

fejta-bot · 2019-11-04T19:56:02Z

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

cblecker · 2019-11-04T19:59:52Z

/remove-lifecycle stale

fejta-bot · 2020-02-02T20:04:59Z

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

fejta-bot · 2020-03-03T20:47:23Z

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten

cblecker · 2020-03-07T20:31:32Z

/remove-lifecycle rotten

fejta-bot · 2020-06-05T21:30:44Z

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

alvaroaleman · 2020-06-05T22:17:22Z

I think this is somethings we still need to fix. There is no good reason to have different codepaths to determine "trust" in different places.

Using/Not using the "trusted org" concept is completely orthogonal to this.

fejta-bot · 2020-07-05T23:14:39Z

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten

fejta-bot · 2020-08-04T23:54:50Z

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/close

k8s-ci-robot · 2020-08-04T23:55:02Z

@fejta-bot: Closing this issue.

In response to this:

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

alvaroaleman · 2020-08-05T01:28:39Z

/reopen

k8s-ci-robot · 2020-08-05T01:28:52Z

@alvaroaleman: Reopened this issue.

In response to this:

/reopen

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

fejta-bot · 2020-09-04T01:37:35Z

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/close

k8s-ci-robot · 2020-09-04T01:37:49Z

@fejta-bot: Closing this issue.

In response to this:

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

cblecker · 2020-09-20T21:54:30Z

/remove-lifecycle rotten
/reopen

k8s-ci-robot · 2020-09-20T21:54:44Z

@cblecker: Reopened this issue.

In response to this:

/remove-lifecycle rotten
/reopen

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

fejta-bot · 2020-12-19T22:19:57Z

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

fejta-bot · 2021-01-18T23:05:00Z

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten

fejta-bot · 2021-02-17T23:50:28Z

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-contributor-experience at kubernetes/community.
/close

k8s-ci-robot · 2021-02-17T23:50:37Z

@fejta-bot: Closing this issue.

In response to this:

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-contributor-experience at kubernetes/community.
/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

nikhita added the kind/bug Categorizes issue or PR as related to a bug. label Aug 2, 2019

k8s-ci-robot added the sig/contributor-experience Categorizes an issue or PR as relevant to SIG Contributor Experience. label Aug 2, 2019

k8s-ci-robot added the area/prow Issues or PRs related to prow label Aug 6, 2019

nikhita mentioned this issue Sep 5, 2019

verify-owners: misleading error message #14201

Closed

mcbenjemaa mentioned this issue Sep 16, 2019

lgtm plugin should use trigger.TrustedUser #14342

Closed

cblecker mentioned this issue Oct 20, 2019

Remove TrustedOrg logic #14875

Closed

k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Nov 4, 2019

k8s-ci-robot removed the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Nov 4, 2019

k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Feb 2, 2020

k8s-ci-robot added lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Mar 3, 2020

k8s-ci-robot removed the lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. label Mar 7, 2020

k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Jun 5, 2020

k8s-ci-robot added lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Jul 5, 2020

k8s-ci-robot closed this as completed Aug 4, 2020

k8s-ci-robot reopened this Aug 5, 2020

k8s-ci-robot closed this as completed Sep 4, 2020

k8s-ci-robot reopened this Sep 20, 2020

k8s-ci-robot removed the lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. label Sep 20, 2020

k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label Dec 19, 2020

k8s-ci-robot added lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Jan 18, 2021

k8s-ci-robot closed this as completed Feb 17, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

lgtm plugin should use trigger.TrustedUser #13740

lgtm plugin should use trigger.TrustedUser #13740

nikhita commented Aug 2, 2019 •

edited

Loading

nikhita commented Aug 2, 2019

nikhita commented Aug 2, 2019

cblecker commented Aug 2, 2019

cblecker commented Aug 2, 2019

alvaroaleman commented Aug 2, 2019

spiffxp commented Aug 6, 2019

fejta-bot commented Nov 4, 2019

cblecker commented Nov 4, 2019

fejta-bot commented Feb 2, 2020

fejta-bot commented Mar 3, 2020

cblecker commented Mar 7, 2020

fejta-bot commented Jun 5, 2020

alvaroaleman commented Jun 5, 2020

fejta-bot commented Jul 5, 2020

fejta-bot commented Aug 4, 2020

k8s-ci-robot commented Aug 4, 2020

alvaroaleman commented Aug 5, 2020

k8s-ci-robot commented Aug 5, 2020

fejta-bot commented Sep 4, 2020

k8s-ci-robot commented Sep 4, 2020

cblecker commented Sep 20, 2020

k8s-ci-robot commented Sep 20, 2020

fejta-bot commented Dec 19, 2020

fejta-bot commented Jan 18, 2021

fejta-bot commented Feb 17, 2021

k8s-ci-robot commented Feb 17, 2021

lgtm plugin should use trigger.TrustedUser #13740

lgtm plugin should use trigger.TrustedUser #13740

Comments

nikhita commented Aug 2, 2019 • edited Loading

nikhita commented Aug 2, 2019

nikhita commented Aug 2, 2019

cblecker commented Aug 2, 2019

cblecker commented Aug 2, 2019

alvaroaleman commented Aug 2, 2019

spiffxp commented Aug 6, 2019

fejta-bot commented Nov 4, 2019

cblecker commented Nov 4, 2019

fejta-bot commented Feb 2, 2020

fejta-bot commented Mar 3, 2020

cblecker commented Mar 7, 2020

fejta-bot commented Jun 5, 2020

alvaroaleman commented Jun 5, 2020

fejta-bot commented Jul 5, 2020

fejta-bot commented Aug 4, 2020

k8s-ci-robot commented Aug 4, 2020

alvaroaleman commented Aug 5, 2020

k8s-ci-robot commented Aug 5, 2020

fejta-bot commented Sep 4, 2020

k8s-ci-robot commented Sep 4, 2020

cblecker commented Sep 20, 2020

k8s-ci-robot commented Sep 20, 2020

fejta-bot commented Dec 19, 2020

fejta-bot commented Jan 18, 2021

fejta-bot commented Feb 17, 2021

k8s-ci-robot commented Feb 17, 2021

nikhita commented Aug 2, 2019 •

edited

Loading