Add latest changes from gitlab-org/security/gitlab@13-3-stable-ee

author: GitLab Bot <gitlab-bot@gitlab.com> 2020-08-28 21:20:15 +0000
committer: GitLab Bot <gitlab-bot@gitlab.com> 2020-08-28 21:20:15 +0000
commit: 92d5172ad42ebc62eb78cac21b1e236ad6ace580 (patch)
tree: ca89437d4725caeb4e27682522061d3bab7e05b0 /app/services/ci
parent: f4a969f7f495978a7e656c69c929c9fdac111cff (diff)
download: gitlab-ce-92d5172ad42ebc62eb78cac21b1e236ad6ace580.tar.gz
1 files changed, 4 insertions, 3 deletions
diff --git a/app/services/ci/pipeline_trigger_service.rb b/app/services/ci/pipeline_trigger_service.rb
index 37b9b4c362c..d9f41b7040e 100644
--- a/app/services/ci/pipeline_trigger_service.rb
+++ b/app/services/ci/pipeline_trigger_service.rb
@@ -10,6 +10,9 @@ module Ci
       elsif job_from_token
         create_pipeline_from_job(job_from_token)
       end
+
+    rescue Ci::AuthJobFinder::AuthError => e
+      error(e.message, 401)
     end
 
     private
@@ -41,8 +44,6 @@ module Ci
       # this check is to not leak the presence of the project if user cannot read it
       return unless can?(job.user, :read_project, project)
 
-      return error("400 Job has to be running", 400) unless job.running?
-
       pipeline = Ci::CreatePipelineService.new(project, job.user, ref: params[:ref])
         .execute(:pipeline, ignore_skip_ci: true) do |pipeline|
           source = job.sourced_pipelines.build(
@@ -64,7 +65,7 @@ module Ci
 
     def job_from_token
       strong_memoize(:job) do
-        Ci::Build.find_by_token(params[:token].to_s)
+        Ci::AuthJobFinder.new(token: params[:token].to_s).execute!
       end
     end
author	GitLab Bot <gitlab-bot@gitlab.com>	2020-08-28 21:20:15 +0000
committer	GitLab Bot <gitlab-bot@gitlab.com>	2020-08-28 21:20:15 +0000
commit	92d5172ad42ebc62eb78cac21b1e236ad6ace580 (patch)
tree	ca89437d4725caeb4e27682522061d3bab7e05b0 /app/services/ci
parent	f4a969f7f495978a7e656c69c929c9fdac111cff (diff)
download	gitlab-ce-92d5172ad42ebc62eb78cac21b1e236ad6ace580.tar.gz