Skip to content

G
gitlab-ce
Commit 81422825 authored by Mark Florian's avatar Mark Florian Committed by Phil Hughes
Browse files
Options

Fix display logic of Securty Report MR widget 

The Security Report MR widget was being displayed if _only_ the license
compliance CI job was set up for the project, even though it would not
have any data to display for its report types.

This tightens up that logic, so that it is only displayed when one or
more of the security reports is set up for the project.

Fixes https://gitlab.com/gitlab-org/gitlab/issues/200017.
parent 146eef9f
Show whitespace changes
Inline Side-by-side
Showing with 61 additions and 40 deletions
ee/app/assets/javascripts/vue_merge_request_widget/mr_widget_options.vue
View file @ 81422825
...@@ -71,9 +71,10 @@ export default { ...@@ -71,9 +71,10 @@ export default {
return performance && performance.head_path && performance.base_path; return performance && performance.head_path && performance.base_path;
}, },
shouldRenderSecurityReport() { shouldRenderSecurityReport() {
const { enabledReports } = this.mr;
return ( return (
this.mr.enabledSecurityReports && enabledReports &&
Object.values(this.mr.enabledSecurityReports).some(isReportEnabled => isReportEnabled) this.$options.securityReportTypes.some(reportType => enabledReports[reportType])
); );
}, },
codequalityText() { codequalityText() {
...@@ -247,6 +248,7 @@ export default { ...@@ -247,6 +248,7 @@ export default {
}; };
}, },
}, },
securityReportTypes: ['dast', 'sast', 'dependencyScanning', 'containerScanning'],
}; };
</script> </script>
<template> <template>
...@@ -301,7 +303,7 @@ export default { ...@@ -301,7 +303,7 @@ export default {
:source-branch="mr.sourceBranch" :source-branch="mr.sourceBranch"
:target-branch="mr.targetBranch" :target-branch="mr.targetBranch"
:base-blob-path="mr.baseBlobPath" :base-blob-path="mr.baseBlobPath"
:enabled-reports="mr.enabledSecurityReports" :enabled-reports="mr.enabledReports"
:sast-help-path="mr.sastHelp" :sast-help-path="mr.sastHelp"
:dast-help-path="mr.dastHelp" :dast-help-path="mr.dastHelp"
:container-scanning-help-path="mr.containerScanningHelp" :container-scanning-help-path="mr.containerScanningHelp"
...@@ -320,6 +322,7 @@ export default { ...@@ -320,6 +322,7 @@ export default {
:can-dismiss-vulnerability="mr.canDismissVulnerability" :can-dismiss-vulnerability="mr.canDismissVulnerability"
:diverged-commits-count="mr.divergedCommitsCount" :diverged-commits-count="mr.divergedCommitsCount"
:mr-state="mr.state" :mr-state="mr.state"
class="js-security-widget"
/> />
<mr-widget-licenses <mr-widget-licenses
v-if="shouldRenderLicenseReport" v-if="shouldRenderLicenseReport"
......
ee/app/assets/javascripts/vue_merge_request_widget/stores/mr_widget_store.js
View file @ 81422825
...@@ -36,7 +36,7 @@ export default class MergeRequestStore extends CEMergeRequestStore { ...@@ -36,7 +36,7 @@ export default class MergeRequestStore extends CEMergeRequestStore {
this.licenseManagement = data.license_management; this.licenseManagement = data.license_management;
this.metricsReportsPath = data.metrics_reports_path; this.metricsReportsPath = data.metrics_reports_path;
this.enabledSecurityReports = convertObjectPropsToCamelCase(data.enabled_reports); this.enabledReports = convertObjectPropsToCamelCase(data.enabled_reports);
this.blockingMergeRequests = data.blocking_merge_requests; this.blockingMergeRequests = data.blocking_merge_requests;
......
ee/changelogs/unreleased/200017-fix-security-mr-widget-display-logic-ee.yml 0 → 100644
View file @ 81422825
---
title: Fix display logic of Securty Report MR widget
merge_request: 24204
author:
type: fixed
ee/spec/javascripts/vue_mr_widget/ee_mr_widget_options_spec.js
View file @ 81422825
...@@ -61,6 +61,8 @@ describe('ee merge request widget options', () => { ...@@ -61,6 +61,8 @@ describe('ee merge request widget options', () => {
gon.features = {}; gon.features = {};
}); });
const findSecurityWidget = () => vm.$el.querySelector('.js-security-widget');
const VULNERABILITY_FEEDBACK_ENDPOINT = 'vulnerability_feedback_path'; const VULNERABILITY_FEEDBACK_ENDPOINT = 'vulnerability_feedback_path';
describe('SAST', () => { describe('SAST', () => {
...@@ -84,7 +86,11 @@ describe('ee merge request widget options', () => { ...@@ -84,7 +86,11 @@ describe('ee merge request widget options', () => {
vm = mountComponent(Component, { mrData: gl.mrWidgetData }); vm = mountComponent(Component, { mrData: gl.mrWidgetData });
expect(vm.$el.querySelector(SAST_SELECTOR).textContent.trim()).toContain('SAST is loading'); expect(
findSecurityWidget()
.querySelector(SAST_SELECTOR)
.textContent.trim(),
).toContain('SAST is loading');
}); });
}); });
...@@ -99,8 +105,9 @@ describe('ee merge request widget options', () => { ...@@ -99,8 +105,9 @@ describe('ee merge request widget options', () => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine( removeBreakLine(
vm.$el.querySelector(`${SAST_SELECTOR} .report-block-list-issue-description`) findSecurityWidget().querySelector(
.textContent, `${SAST_SELECTOR} .report-block-list-issue-description`,
).textContent,
), ),
).toEqual('SAST detected 1 new, and 2 fixed vulnerabilities'); ).toEqual('SAST detected 1 new, and 2 fixed vulnerabilities');
done(); done();
...@@ -120,8 +127,9 @@ describe('ee merge request widget options', () => { ...@@ -120,8 +127,9 @@ describe('ee merge request widget options', () => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine( removeBreakLine(
vm.$el.querySelector(`${SAST_SELECTOR} .report-block-list-issue-description`) findSecurityWidget().querySelector(
.textContent, `${SAST_SELECTOR} .report-block-list-issue-description`,
).textContent,
).trim(), ).trim(),
).toEqual('SAST detected no vulnerabilities'); ).toEqual('SAST detected no vulnerabilities');
done(); done();
...@@ -139,9 +147,9 @@ describe('ee merge request widget options', () => { ...@@ -139,9 +147,9 @@ describe('ee merge request widget options', () => {
it('should render error indicator', done => { it('should render error indicator', done => {
setTimeout(() => { setTimeout(() => {
expect(removeBreakLine(vm.$el.querySelector(SAST_SELECTOR).textContent)).toContain( expect(
'SAST: Loading resulted in an error', removeBreakLine(findSecurityWidget().querySelector(SAST_SELECTOR).textContent),
); ).toContain('SAST: Loading resulted in an error');
done(); done();
}, 0); }, 0);
}); });
...@@ -170,7 +178,9 @@ describe('ee merge request widget options', () => { ...@@ -170,7 +178,9 @@ describe('ee merge request widget options', () => {
vm = mountComponent(Component, { mrData: gl.mrWidgetData }); vm = mountComponent(Component, { mrData: gl.mrWidgetData });
expect( expect(
removeBreakLine(vm.$el.querySelector(DEPENDENCY_SCANNING_SELECTOR).textContent), removeBreakLine(
findSecurityWidget().querySelector(DEPENDENCY_SCANNING_SELECTOR).textContent,
),
).toContain('Dependency scanning is loading'); ).toContain('Dependency scanning is loading');
}); });
}); });
...@@ -187,7 +197,7 @@ describe('ee merge request widget options', () => { ...@@ -187,7 +197,7 @@ describe('ee merge request widget options', () => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine( removeBreakLine(
vm.$el.querySelector( findSecurityWidget().querySelector(
`${DEPENDENCY_SCANNING_SELECTOR} .report-block-list-issue-description`, `${DEPENDENCY_SCANNING_SELECTOR} .report-block-list-issue-description`,
).textContent, ).textContent,
), ),
...@@ -213,7 +223,7 @@ describe('ee merge request widget options', () => { ...@@ -213,7 +223,7 @@ describe('ee merge request widget options', () => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine( removeBreakLine(
vm.$el.querySelector( findSecurityWidget().querySelector(
`${DEPENDENCY_SCANNING_SELECTOR} .report-block-list-issue-description`, `${DEPENDENCY_SCANNING_SELECTOR} .report-block-list-issue-description`,
).textContent, ).textContent,
), ),
...@@ -235,7 +245,7 @@ describe('ee merge request widget options', () => { ...@@ -235,7 +245,7 @@ describe('ee merge request widget options', () => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine( removeBreakLine(
vm.$el.querySelector( findSecurityWidget().querySelector(
`${DEPENDENCY_SCANNING_SELECTOR} .report-block-list-issue-description`, `${DEPENDENCY_SCANNING_SELECTOR} .report-block-list-issue-description`,
).textContent, ).textContent,
), ),
...@@ -257,7 +267,9 @@ describe('ee merge request widget options', () => { ...@@ -257,7 +267,9 @@ describe('ee merge request widget options', () => {
it('should render error indicator', done => { it('should render error indicator', done => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine(vm.$el.querySelector(DEPENDENCY_SCANNING_SELECTOR).textContent), removeBreakLine(
findSecurityWidget().querySelector(DEPENDENCY_SCANNING_SELECTOR).textContent,
),
).toContain('Dependency scanning: Loading resulted in an error'); ).toContain('Dependency scanning: Loading resulted in an error');
done(); done();
}, 0); }, 0);
...@@ -650,7 +662,9 @@ describe('ee merge request widget options', () => { ...@@ -650,7 +662,9 @@ describe('ee merge request widget options', () => {
vm = mountComponent(Component, { mrData: gl.mrWidgetData }); vm = mountComponent(Component, { mrData: gl.mrWidgetData });
expect( expect(
removeBreakLine(vm.$el.querySelector(CONTAINER_SCANNING_SELECTOR).textContent), removeBreakLine(
findSecurityWidget().querySelector(CONTAINER_SCANNING_SELECTOR).textContent,
),
).toContain('Container scanning is loading'); ).toContain('Container scanning is loading');
}); });
}); });
...@@ -667,7 +681,7 @@ describe('ee merge request widget options', () => { ...@@ -667,7 +681,7 @@ describe('ee merge request widget options', () => {
setTimeout(() => { setTimeout(() => {
expect( expect(
removeBreakLine( removeBreakLine(
vm.$el.querySelector( findSecurityWidget().querySelector(
`${CONTAINER_SCANNING_SELECTOR} .report-block-list-issue-description`, `${CONTAINER_SCANNING_SELECTOR} .report-block-list-issue-description`,
).textContent, ).textContent,
), ),
...@@ -687,9 +701,11 @@ describe('ee merge request widget options', () => { ...@@ -687,9 +701,11 @@ describe('ee merge request widget options', () => {
it('should render error indicator', done => { it('should render error indicator', done => {
setTimeout(() => { setTimeout(() => {
expect(vm.$el.querySelector(CONTAINER_SCANNING_SELECTOR).textContent.trim()).toContain( expect(
'Container scanning: Loading resulted in an error', findSecurityWidget()
); .querySelector(CONTAINER_SCANNING_SELECTOR)
.textContent.trim(),
).toContain('Container scanning: Loading resulted in an error');
done(); done();
}, 0); }, 0);
}); });
...@@ -717,7 +733,11 @@ describe('ee merge request widget options', () => { ...@@ -717,7 +733,11 @@ describe('ee merge request widget options', () => {
vm = mountComponent(Component, { mrData: gl.mrWidgetData }); vm = mountComponent(Component, { mrData: gl.mrWidgetData });
expect(vm.$el.querySelector(DAST_SELECTOR).textContent.trim()).toContain('DAST is loading'); expect(
findSecurityWidget()
.querySelector(DAST_SELECTOR)
.textContent.trim(),
).toContain('DAST is loading');
}); });
}); });
...@@ -732,7 +752,7 @@ describe('ee merge request widget options', () => { ...@@ -732,7 +752,7 @@ describe('ee merge request widget options', () => {
it('should render provided data', done => { it('should render provided data', done => {
setTimeout(() => { setTimeout(() => {
expect( expect(
vm.$el findSecurityWidget()
.querySelector(`${DAST_SELECTOR} .report-block-list-issue-description`) .querySelector(`${DAST_SELECTOR} .report-block-list-issue-description`)
.textContent.trim(), .textContent.trim(),
).toEqual('DAST detected 1 new, and 2 fixed vulnerabilities'); ).toEqual('DAST detected 1 new, and 2 fixed vulnerabilities');
...@@ -751,9 +771,11 @@ describe('ee merge request widget options', () => { ...@@ -751,9 +771,11 @@ describe('ee merge request widget options', () => {
it('should render error indicator', done => { it('should render error indicator', done => {
setTimeout(() => { setTimeout(() => {
expect(vm.$el.querySelector(DAST_SELECTOR).textContent.trim()).toContain( expect(
'DAST: Loading resulted in an error', findSecurityWidget()
); .querySelector(DAST_SELECTOR)
.textContent.trim(),
).toContain('DAST: Loading resulted in an error');
done(); done();
}, 0); }, 0);
}); });
...@@ -1076,6 +1098,8 @@ describe('ee merge request widget options', () => { ...@@ -1076,6 +1098,8 @@ describe('ee merge request widget options', () => {
const noSecurityReportsEnabledCases = [ const noSecurityReportsEnabledCases = [
undefined, undefined,
{}, {},
{ foo: true },
{ license_management: true },
{ {
dast: false, dast: false,
sast: false, sast: false,
...@@ -1085,26 +1109,15 @@ describe('ee merge request widget options', () => { ...@@ -1085,26 +1109,15 @@ describe('ee merge request widget options', () => {
]; ];
noSecurityReportsEnabledCases.forEach(noSecurityReportsEnabled => { noSecurityReportsEnabledCases.forEach(noSecurityReportsEnabled => {
beforeEach(() => { it('does not render the security reports widget', () => {
gl.mrWidgetData = { gl.mrWidgetData = {
...mockData, ...mockData,
enabled_reports: noSecurityReportsEnabled, enabled_reports: noSecurityReportsEnabled,
}; };
vm = mountComponent(Component, { mrData: gl.mrWidgetData }); vm = mountComponent(Component, { mrData: gl.mrWidgetData });
});
it('does not render the security reports', () => {
const selectors = [
SAST_SELECTOR,
DAST_SELECTOR,
DEPENDENCY_SCANNING_SELECTOR,
CONTAINER_SCANNING_SELECTOR,
];
const securityWidgets = selectors.map(selector => vm.$el.querySelector(selector));
expect(securityWidgets).toEqual([null, null, null, null]); expect(findSecurityWidget()).toBe(null);
}); });
}); });
}); });
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment
GitLab Nexedi Edition | About GitLab | About Nexedi | 沪ICP备2021021310号-2 | 沪ICP备2021021310号-7