[JENKINS-69917] - Snippetizer/index.jelly javascript un-inlined. #599
Conversation
| if (!json) { | ||
| return; // just a separator | ||
| } | ||
| const url = '/jenkins/pipeline-syntax/generateSnippet' // ${rootURL}/${it.GENERATE_URL} |
There was a problem hiding this comment.
This will not work if the context path is set to anything other than /jenkins.
There was a problem hiding this comment.
I don't see how I can use/pass template variables (${rootURL}) in the Javascript file...
There was a problem hiding this comment.
I do not often work in JS, but there are various ways; IIRC the preferred technique is to define data attributes on HTML elements and look those up from JS. Search core sources for examples.
| @@ -67,27 +67,10 @@ THE SOFTWARE. | |||
| <f:dropdownListBlock title="${%— Advanced/Deprecated —}"/> | |||
| <local:listSteps quasiDescriptors="${it.getQuasiDescriptors(true)}"/> | |||
| </f:dropdownList> | |||
| <j:set var="id" value="${h.generateId()}"/> | |||
There was a problem hiding this comment.
Loses uniquification of the textarea. OTOH
|
@Artmorse do you plan to fix this or should it be closed? |
|
Yes, I'll find some time to have a look to it this week! |
Can you give me more explanation about how to test it ? |
|
The page is accessible from e.g.
And you need to check when the context root is empty (like in ci.jenkins.io) as well as when it has a value (like |
|
I've some issues with |
| method: 'POST', | ||
| parameters: {json: json}, | ||
| onSuccess: function(r) { | ||
| document.getElementById('prototypeText').value = r.responseText; |
plugin/src/main/resources/org/jenkinsci/plugins/workflow/cps/Snippetizer/index.jelly
Outdated
Show resolved
Hide resolved
plugin/src/main/resources/org/jenkinsci/plugins/workflow/cps/Snippetizer/handle-prototype.js
Outdated
Show resolved
Hide resolved
Co-authored-by: Jesse Glick <jglick@cloudbees.com>
|
@jglick thanks for pinging me, I'll look at it this week! |
| <input type="button" id="generatePipelineScript" value="${%Generate Pipeline Script}" | ||
| class="submit-button primary" | ||
| data-url="${rootURL}/${it.GENERATE_URL}" | ||
| data-crumb="${h.getCrumb(request)}"/> |
There was a problem hiding this comment.
I've added the jenkins crumb to avoid 403.
That's the easiest way, I found, to pass it to the javascript script.
There was a problem hiding this comment.
Could also just add a CrumbExclusion for
POST only to handle larger quantities of input but it is in fact read-only so not a CSRF threat. Anyway, this is the straightforward translation of the original.
plugin/src/main/resources/org/jenkinsci/plugins/workflow/cps/Snippetizer/handle-prototype.js
Outdated
Show resolved
Hide resolved
| <input type="button" id="generatePipelineScript" value="${%Generate Pipeline Script}" | ||
| class="submit-button primary" | ||
| data-url="${rootURL}/${it.GENERATE_URL}" | ||
| data-crumb="${h.getCrumb(request)}"/> |
There was a problem hiding this comment.
Could also just add a CrumbExclusion for
POST only to handle larger quantities of input but it is in fact read-only so not a CSRF threat. Anyway, this is the straightforward translation of the original.
| document.addEventListener('DOMContentLoaded', () => { | ||
|
|
||
| const generatePipelineScript = document.getElementById("generatePipelineScript"); | ||
| const url = generatePipelineScript.getAttribute("data-url"); | ||
| const crumb = generatePipelineScript.getAttribute("data-crumb"); | ||
| generatePipelineScript.onclick = (_) => { |
There was a problem hiding this comment.
Using a class and Behaviour.specify is more conventional I think, but this should be fine as well.
| @@ -67,36 +67,13 @@ THE SOFTWARE. | |||
| <f:dropdownListBlock title="${%— Advanced/Deprecated —}"/> | |||
| <local:listSteps quasiDescriptors="${it.getQuasiDescriptors(true)}"/> | |||
| </f:dropdownList> | |||
| <j:set var="id" value="${h.generateId()}"/> | |||
There was a problem hiding this comment.
Note that removing generateId and reverting to a hard-coded id loses the ability for this code to exist in multiple places in a page. Not an issue in this case since it exists only in one place in a top-level page. The general approach is to use behaviors and look up elements via relative DOM path.
The issue
You can find all the issue details here.
My updates
I've moved the
onclickcall from theSnippetizer/index.jellyfile to thehandle-prototype.jsone.