Commit e6963473 authored by Paul Gascou-Vaillancourt's avatar Paul Gascou-Vaillancourt Committed by Paul Slaughter

Render a solution in a standalone vulnerability

- Reuse SolutionCard component to show a solution on the standalone
vulnerability page
parent 52b249dc
import Vue from 'vue';
import { parseBoolean } from '~/lib/utils/common_utils';
import SolutionCard from 'ee/vue_shared/security_reports/components/solution_card.vue';
window.addEventListener('DOMContentLoaded', () => {
const el = document.getElementById('js-vulnerability-solution');
if (!el) {
return false;
}
const { solution, vulnerabilityFeedbackHelpPath, vulnerabilityState } = el.dataset;
const hasMr = parseBoolean(el.dataset.hasMr);
const remediation = JSON.parse(el.dataset.remediation);
const hasDownload = Boolean(
vulnerabilityState !== 'resolved' && remediation?.diff?.length && !hasMr,
);
const props = {
solution,
remediation,
hasDownload,
hasMr,
hasRemediation: Boolean(remediation),
vulnerabilityFeedbackHelpPath,
isStandaloneVulnerability: true,
};
return new Vue({
el,
render: h =>
h(SolutionCard, {
props,
}),
});
});
...@@ -36,6 +36,11 @@ export default { ...@@ -36,6 +36,11 @@ export default {
default: '', default: '',
required: false, required: false,
}, },
isStandaloneVulnerability: {
type: Boolean,
required: false,
default: false,
},
}, },
computed: { computed: {
solutionText() { solutionText() {
...@@ -68,11 +73,16 @@ export default { ...@@ -68,11 +73,16 @@ export default {
<template> <template>
<div class="card my-4"> <div class="card my-4">
<div v-if="solutionText" class="card-body d-flex align-items-center"> <div v-if="solutionText" class="card-body d-flex align-items-center">
<div class="col-2 d-flex align-items-center pl-0"> <div
<div class="circle-icon-container" aria-hidden="true"><icon name="bulb" /></div> class="col-auto d-flex align-items-center pl-0"
:class="{ 'col-md-2': !isStandaloneVulnerability }"
>
<div class="circle-icon-container pr-3" aria-hidden="true"><icon name="bulb" /></div>
<strong class="text-right flex-grow-1">{{ s__('ciReport|Solution') }}:</strong> <strong class="text-right flex-grow-1">{{ s__('ciReport|Solution') }}:</strong>
</div> </div>
<span class="col-10 flex-shrink-1 pl-0">{{ solutionText }}</span> <span class="flex-shrink-1 pl-0" :class="{ 'col-md-10': !isStandaloneVulnerability }">{{
solutionText
}}</span>
</div> </div>
<template v-if="showMsg"> <template v-if="showMsg">
<div class="card-footer" :class="{ 'border-0': !solutionText }"> <div class="card-footer" :class="{ 'border-0': !solutionText }">
......
...@@ -48,3 +48,9 @@ ...@@ -48,3 +48,9 @@
- @vulnerability.finding.identifiers.each do |identifier| - @vulnerability.finding.identifiers.each do |identifier|
%li %li
%a{ :href=>identifier.url, target: "_blank", rel: 'noopener noreferrer' }= identifier.name %a{ :href=>identifier.url, target: "_blank", rel: 'noopener noreferrer' }= identifier.name
- if @vulnerability.finding.solution || @vulnerability.finding.remediations
#js-vulnerability-solution{ data: { vulnerability_state: @vulnerability.state,
solution: @vulnerability.finding.solution,
remediation: @vulnerability.finding.remediations&.first.to_json,
has_mr: !!@vulnerability.finding.merge_request_feedback.try(:merge_request_iid),
vulnerability_feedback_help_path: help_page_path("user/application_security/index", anchor: "interacting-with-the-vulnerabilities") } }
...@@ -105,6 +105,12 @@ describe Projects::Security::VulnerabilitiesController do ...@@ -105,6 +105,12 @@ describe Projects::Security::VulnerabilitiesController do
expect(response.body).to have_css("#js-pipeline-created") expect(response.body).to have_css("#js-pipeline-created")
end end
it 'renders the solution card' do
show_vulnerability
expect(response.body).to have_css("#js-vulnerability-solution")
end
end end
context "when there's no attached pipeline" do context "when there's no attached pipeline" do
...@@ -115,6 +121,12 @@ describe Projects::Security::VulnerabilitiesController do ...@@ -115,6 +121,12 @@ describe Projects::Security::VulnerabilitiesController do
expect(response.body).to have_css("#js-vulnerability-created") expect(response.body).to have_css("#js-vulnerability-created")
end end
it 'renders the solution card' do
show_vulnerability
expect(response.body).to have_css("#js-vulnerability-solution")
end
end end
context 'when the feature flag is disabled' do context 'when the feature flag is disabled' do
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment