Return-Path: X-Original-To: apmail-continuum-issues-archive@www.apache.org Delivered-To: apmail-continuum-issues-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 1AD4D175F4 for ; Mon, 4 May 2015 01:46:06 +0000 (UTC) Received: (qmail 53999 invoked by uid 500); 4 May 2015 01:46:06 -0000 Delivered-To: apmail-continuum-issues-archive@continuum.apache.org Received: (qmail 53965 invoked by uid 500); 4 May 2015 01:46:06 -0000 Mailing-List: contact issues-help@continuum.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@continuum.apache.org Delivered-To: mailing list issues@continuum.apache.org Received: (qmail 53954 invoked by uid 99); 4 May 2015 01:46:05 -0000 Received: from arcas.apache.org (HELO arcas.apache.org) (140.211.11.28) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 04 May 2015 01:46:05 +0000 Date: Mon, 4 May 2015 01:46:05 +0000 (UTC) From: "Brent N Atkinson (JIRA)" To: issues@continuum.apache.org Message-ID: In-Reply-To: References: Subject: [jira] [Closed] (CONTINUUM-2761) Users with limited group visibility cause expensive queries when running build reports MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 [ https://issues.apache.org/jira/browse/CONTINUUM-2761?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ] Brent N Atkinson closed CONTINUUM-2761. --------------------------------------- Resolution: Fixed Fixed in r1677509 > Users with limited group visibility cause expensive queries when running build reports > -------------------------------------------------------------------------------------- > > Key: CONTINUUM-2761 > URL: https://issues.apache.org/jira/browse/CONTINUUM-2761 > Project: Continuum > Issue Type: Bug > Reporter: Brent N Atkinson > Assignee: Brent N Atkinson > Fix For: 1.5.0 > > > As a user with limited group visibility, when running a report for ALL groups the entire result set is queried. The results are subsequently loaded into memory and are filtered based on their permissions. This allows the user to initiate much more expensive queries that can have a significantly negative effect on service health. > An example: > The guest user is granted permission to see only the Default Group, which is empty, on a server with an extremely large number of build results in other groups. An anonymous user visits the server and runs an open build report (ALL groups, ALL statuses). > What you would expect: The anonymous user finds exactly what is visible to them by browsing the project group: there are no results. Because there are no results, the query is answered quickly. > What actually happens: the entire build result table is scanned resulting in an extremely long query (due to the large number of build results). Also, prior to the work on CONTINUUM-2746, which uses range queries to load results in batches, this would crash the system with an {{OutOfMemoryError}}. > The essence of the issue is that users can cause an effect that is disproportional to their privilege. Ideally, users should only be able to affect the system by accessing resources they actually have permission to see (scanning only rows they have access to). -- This message was sent by Atlassian JIRA (v6.3.4#6332)