Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Groups/users labels text #10663

Merged
merged 2 commits into from
Aug 1, 2024
Merged

Groups/users labels text #10663

merged 2 commits into from
Aug 1, 2024

Conversation

dogboat
Copy link
Contributor

@dogboat dogboat commented Aug 1, 2024

Description

This patch updates some of the labels/wording on the Groups and Users view pages.

Test results

Viewing the pages yields updated text.

Screenshots

Group (with no associations):
empty_groups
(If a Group was empty, it'd say "This Group has no members." in line with the other sections.)

Group (with associations):
full_group

User (without associations):
empty_user

User (with associations):
full_user

[sc-3273]

@github-actions github-actions bot added the ui label Aug 1, 2024
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Aug 1, 2024
edited
Loading

DryRun Security Summary

The pull request focuses on improving the user interface and readability of the "Group" and "User" pages in the DefectDojo application, without introducing any obvious security concerns, by updating headings, terminology, and messages to provide more context and clarity to the users.

Expand for full summary

Summary:

The code changes in this pull request are focused on improving the user interface and readability of the "Group" and "User" pages in the DefectDojo application. The changes aim to provide more context and clarity to the users by updating headings, terminology, and messages displayed on the pages. These changes do not introduce any obvious security concerns, as they are primarily focused on enhancing the user experience and usability of the application.

Files Changed:

  1. dojo/templates/dojo/view_group.html:

    • The heading for the group page has been updated to include the word "Group:" for clarity.
    • The headings and messages for the "Members", "Product Type Groups", and "Product Groups" sections have been improved to provide more context.
    • The messages displayed when there are no members or groups have been updated to be more informative.

  2. dojo/templates/dojo/view_user.html:

    • The heading for the user page has been updated to include the word "User:" for clarity.
    • The section titles have been updated to use more descriptive and clear language, such as "Product Types this User can access" and "Products this User can access".
    • The messages displayed when there are no product types, products, or groups associated with the user have been updated to be more informative.
    • The code includes various permission checks and dropdown menus that allow authorized users to perform actions such as adding product types, products, or groups to the user, as well as editing or deleting the user's memberships, suggesting a robust permissions system in the application.

Overall, these changes appear to be focused on improving the user experience and clarity of the information displayed, rather than introducing any significant security-related changes. However, it's important to ensure that the existing security and permissions controls are maintained and properly implemented throughout the application.

Code Analysis

We ran 9 analyzers against 2 files and 1 analyzer had findings. 8 analyzers had no findings.

Analyzer Findings
Authn/Authz Analyzer 3 findings

Riskiness

🟢 Risk threshold not exceeded.

View PR in the DryRun Dashboard.

@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Aug 1, 2024

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

mtesauro
mtesauro approved these changes Aug 1, 2024
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

@mtesauro mtesauro merged commit 22937ba into DefectDojo:bugfix Aug 1, 2024
126 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Maffooch Maffooch Maffooch approved these changes

@hblankenship hblankenship hblankenship approved these changes

@mtesauro mtesauro mtesauro approved these changes

@cneill cneill cneill approved these changes

@grendel513 grendel513 grendel513 approved these changes

Assignees
No one assigned
Labels
ui
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@dogboat @grendel513 @cneill @mtesauro @hblankenship @Maffooch