-
Feature Request
-
Resolution: Unresolved
-
Undefined
-
None
-
2.4
-
False
-
-
False
- What is the nature and description of the request?
Considering the following scenario:
1. AAP Organization admin sets up a github project in AAP, specifying the SCM URL and branch.
2. Sometime later, the owner of the content on github changes the path to the content
3. The next time the AAP project is refreshed, AAP will send a request to the "old" github URL
4. Github responds with a redirect
5. AAP follows the redirect and finds the content at the new location, the org admin is unaware that the URL is outdated
6. A malicious actor uploads malicious content to the "old" github URL
7. The next time the AAP project is refreshed, AAP will send a request to the "old" URL
8. Github sends the malicious content to AAP and AAP updates with the malicious content
The redirect from the github repository is performed by github and customer would like to get some notification about the change of the SCM repository.
Customer wants this RFE to ask that the AAP Admin be able to select from the following responses to an SCM redirect:
1. Follow unconditionally - the current approach, the problem remains
2. Follow but send a notification to the org and project admin that the URL should be changed - the problem remains until the project definition is updated
3. Automatically update the SCM URL in the project to the new value and refresh from the new URL - problem solved when detected
4. Fail the refresh, blank the SCM URL in the project, and explain in the error message that the URL should be changed to the new value
- Why does the customer need this? (List the business requirements here)
Security concern.
- How would you like to achieve this? (List the functional requirements here)
- List any affected known dependencies: Doc, UI etc..
- Github Link if any