Summary

Do not execute server hooks without write permission

Review Request #2400 — Created March 30, 2023 and submitted March 30, 2023, 7:51 p.m.

Information

Owner

aklitzing@gmail.com

Repository

grim/hgkeeper

Branch

default

Bugs

Depends On

Reviewers

Groups

People

grim

Description

If an authenticated user pushed to a repository with server
hooks it was possible to execute those hooks even the user
has no write permission.

So let's re-order the hooks to execute the deny hook first.

Testing Done

Commits

Summary	ID	Author
Do not execute server hooks without write permission If an authenticated user pushed to a repository with server hooks it was possible to execute those hooks even the user has no write permission. So let's re-order the hooks to execute the deny hook first.	6684106265360a04c231f719fff08abb3e972933	Andre Klitzing

Expand All
Collapse All

Ship it!

```
Ship It!
```
```
Nice find! Thanks!!
```

Status:: Completed

Everything has been updated. I'll get a release cut this weekend.