Improve AdministrativeMonitor snooze validation and cleanup

Author: LakshyaBagani

core/src/main/java/hudson/model/AdministrativeMonitor.java

@@ -57,33 +57,42 @@
  * monitoring and activate/deactivate the monitor accordingly. Sometimes
  * this can be done by updating a flag from code (see {@link SCMTrigger}
  * for one such example), while other times it's more convenient to do
- * so by running some code periodically (for this, use {@link TimerTrigger#timer})
+ * so by running some code periodically (for this, use
+ * {@link TimerTrigger#timer})
  *
  * <p>
- * {@link AdministrativeMonitor}s are bound to URL by {@link Jenkins#getAdministrativeMonitor(String)}.
+ * {@link AdministrativeMonitor}s are bound to URL by
+ * {@link Jenkins#getAdministrativeMonitor(String)}.
  * See {@link #getUrl()}.
  *
  * <h3>Views</h3>
  * <dl>
  * <dt>message.jelly</dt>
  * <dd>
- * If {@link #isActivated()} returns true, Jenkins will use the {@code message.jelly}
+ * If {@link #isActivated()} returns true, Jenkins will use the
+ * {@code message.jelly}
  * view of this object to render the warning text. This happens in the
  * {@code http://SERVER/jenkins/manage} page. This view should typically render
- * a DIV box with class='alert alert-danger' or class='alert alert-warning' with a human-readable text
+ * a DIV box with class='alert alert-danger' or class='alert alert-warning' with
+ * a human-readable text
  * inside it. It often also contains a link to a page that provides more details
  * about the problem.<br>
- * Additionally 2 numbers are shown in the Jenkins header of administrators, one with the number or active
- * non-security relevant monitors and one with the number of active security relevant monitors.
+ * Additionally 2 numbers are shown in the Jenkins header of administrators, one
+ * with the number or active
+ * non-security relevant monitors and one with the number of active security
+ * relevant monitors.
  * </dd>
  * </dl>
  *
  * <h3>Use with System Read permission</h3>
  * <p>
- *     By default administrative monitors are visible only to users with Administer permission.
- *     Users with {@link Jenkins#SYSTEM_READ} permission can access administrative monitors that override {@link #getRequiredPermission()}.
- *     Care needs to be taken to ensure users with that permission don't have access to actions modifying system state.
- *     For more details, see {@link #getRequiredPermission()}.
+ * By default administrative monitors are visible only to users with Administer
+ * permission.
+ * Users with {@link Jenkins#SYSTEM_READ} permission can access administrative
+ * monitors that override {@link #getRequiredPermission()}.
+ * Care needs to be taken to ensure users with that permission don't have access
+ * to actions modifying system state.
+ * For more details, see {@link #getRequiredPermission()}.
  * </p>
  *
  * @author Kohsuke Kawaguchi
@@ -94,7 +103,8 @@ public abstract class AdministrativeMonitor extends AbstractModelObject implemen
     private static final Logger LOGGER = Logger.getLogger(AdministrativeMonitor.class.getName());
 
     /**
-     * Human-readable ID of this monitor, which needs to be unique within the system.
+     * Human-readable ID of this monitor, which needs to be unique within the
+     * system.
      *
      * <p>
      * This ID is used to remember persisted setting for this monitor,
@@ -111,7 +121,8 @@ protected AdministrativeMonitor() {
     }
 
     /**
-     * Returns the URL of this monitor, relative to the context path, like "administrativeMonitor/foobar".
+     * Returns the URL of this monitor, relative to the context path, like
+     * "administrativeMonitor/foobar".
      */
     public String getUrl() {
         return "administrativeMonitor/" + id;
@@ -143,10 +154,12 @@ public void disable(boolean value) throws IOException {
     }
 
     /**
-     * Returns true if this monitor {@link #disable(boolean) isn't disabled} earlier.
+     * Returns true if this monitor {@link #disable(boolean) isn't disabled}
+     * earlier.
      *
      * <p>
-     * This flag implements the ability for the admin to say "no thank you" to the monitor that
+     * This flag implements the ability for the admin to say "no thank you" to the
+     * monitor that
      * he wants to ignore.
      */
     public boolean isEnabled() {
@@ -165,9 +178,11 @@ public boolean isSnoozed() {
         if (expiry == null) {
             return false;
         }
+
         long now = System.currentTimeMillis();
+
+        // Clean up if expired
         if (now >= expiry) {
-            // Cleanup expired entry to prevent memory leak
             try {
                 AbstractCIBase jenkins = Jenkins.get();
                 Map<String, Long> map = jenkins.getSnoozedAdministrativeMonitors();
@@ -176,23 +191,34 @@ public boolean isSnoozed() {
                     jenkins.save();
                 }
             } catch (IOException e) {
-                LOGGER.log(Level.WARNING, "Failed to cleanup expired snooze for " + id, e);
+                LOGGER.log(Level.WARNING, "Failed to clean up expired snooze for " + id, e);
             }
             return false;
         }
+
         return true;
     }
 
     /**
+     * Snooze this monitor for a specified duration.
+     *
+     * @param durationMs duration in milliseconds
+     * @throws IOException              if unable to save
+     * @throws IllegalArgumentException if duration is invalid
      * @since 2.549
      */
     public void snooze(long durationMs) throws IOException {
+        // Validate input
         if (durationMs <= 0) {
-            throw new IllegalArgumentException("Duration must be positive");
+            throw new IllegalArgumentException("Snooze duration must be positive");
         }
-        if (durationMs > 365L * 24 * 60 * 60 * 1000) {
-            throw new IllegalArgumentException("Duration exceeds maximum (1 year)");
+
+        // Max 1 year
+        long maxDuration = 365L * 24 * 60 * 60 * 1000;
+        if (durationMs > maxDuration) {
+            throw new IllegalArgumentException("Snooze duration cannot exceed 1 year");
         }
+
         long expiryTime = System.currentTimeMillis() + durationMs;
         AbstractCIBase jenkins = Jenkins.get();
         Map<String, Long> map = jenkins.getSnoozedAdministrativeMonitors();
@@ -275,36 +301,52 @@ public void doSnooze(StaplerRequest2 req, StaplerResponse2 rsp) throws IOExcepti
 
     /**
      * Required permission to view this admin monitor.
-     * By default {@link Jenkins#ADMINISTER}, but {@link Jenkins#SYSTEM_READ} or {@link Jenkins#MANAGE} are also supported.
+     * By default {@link Jenkins#ADMINISTER}, but {@link Jenkins#SYSTEM_READ} or
+     * {@link Jenkins#MANAGE} are also supported.
      * <p>
-     *     Changing this permission check to return {@link Jenkins#SYSTEM_READ} will make the active
-     *     administrative monitor appear on {@link ManageJenkinsAction} to users without Administer permission.
-     *     {@link #doDisable(StaplerRequest2, StaplerResponse2)} will still always require Administer permission.
+     * Changing this permission check to return {@link Jenkins#SYSTEM_READ} will
+     * make the active
+     * administrative monitor appear on {@link ManageJenkinsAction} to users without
+     * Administer permission.
+     * {@link #doDisable(StaplerRequest2, StaplerResponse2)} will still always
+     * require Administer permission.
      * </p>
      * <p>
-     *     This method only allows for a single permission to be returned. If more complex permission checks are required,
-     *     override {@link #checkRequiredPermission()} and {@link #hasRequiredPermission()} instead.
+     * This method only allows for a single permission to be returned. If more
+     * complex permission checks are required,
+     * override {@link #checkRequiredPermission()} and
+     * {@link #hasRequiredPermission()} instead.
      * </p>
      * <p>
-     *     Implementers need to ensure that {@code doAct} and other web methods perform necessary permission checks:
-     *     Users with System Read permissions are expected to be limited to read-only access.
-     *     Form UI elements that change system state, e.g. toggling a feature on or off, need to be hidden from users
-     *     lacking Administer permission.
+     * Implementers need to ensure that {@code doAct} and other web methods perform
+     * necessary permission checks:
+     * Users with System Read permissions are expected to be limited to read-only
+     * access.
+     * Form UI elements that change system state, e.g. toggling a feature on or off,
+     * need to be hidden from users
+     * lacking Administer permission.
      * </p>
+     *
      * @since 2.233
-     * @deprecated Callers should use {@link #checkRequiredPermission()} or {@link #hasRequiredPermission()}.
+     * @deprecated Callers should use {@link #checkRequiredPermission()} or
+     *             {@link #hasRequiredPermission()}.
      */
     @Deprecated
     public Permission getRequiredPermission() {
         return Jenkins.ADMINISTER;
     }
 
     /**
-     * Checks if the current user has the minimum required permission to view this administrative monitor.
+     * Checks if the current user has the minimum required permission to view this
+     * administrative monitor.
      * <p>
-     * Subclasses may override this method and {@link #hasRequiredPermission()} instead of {@link #getRequiredPermission()} to perform more complex permission checks,
-     * for example, checking either {@link Jenkins#MANAGE} or {@link Jenkins#SYSTEM_READ}.
+     * Subclasses may override this method and {@link #hasRequiredPermission()}
+     * instead of {@link #getRequiredPermission()} to perform more complex
+     * permission checks,
+     * for example, checking either {@link Jenkins#MANAGE} or
+     * {@link Jenkins#SYSTEM_READ}.
      * </p>
+     *
      * @see #getRequiredPermission()
      * @see #hasRequiredPermission()
      * @since 2.468
@@ -314,11 +356,16 @@ public void checkRequiredPermission() {
     }
 
     /**
-     * Checks if the current user has the minimum required permission to view this administrative monitor.
+     * Checks if the current user has the minimum required permission to view this
+     * administrative monitor.
      * <p>
-     * Subclasses may override this method and {@link #checkRequiredPermission} instead of {@link #getRequiredPermission()} to perform more complex permission checks,
-     * for example, checking either {@link Jenkins#MANAGE} or {@link Jenkins#SYSTEM_READ}.
+     * Subclasses may override this method and {@link #checkRequiredPermission}
+     * instead of {@link #getRequiredPermission()} to perform more complex
+     * permission checks,
+     * for example, checking either {@link Jenkins#MANAGE} or
+     * {@link Jenkins#SYSTEM_READ}.
      * </p>
+     *
      * @see #getRequiredPermission()
      * @see #checkRequiredPermission()
      * @since 2.468
@@ -328,9 +375,11 @@ public boolean hasRequiredPermission() {
     }
 
     /**
-     * Checks if the current user has the minimum required permission to view any administrative monitor.
+     * Checks if the current user has the minimum required permission to view any
+     * administrative monitor.
      *
-     * @return true if the current user has the minimum required permission to view any administrative monitor.
+     * @return true if the current user has the minimum required permission to view
+     *         any administrative monitor.
      *
      * @since 2.468
      */
@@ -339,7 +388,8 @@ public static boolean hasPermissionToDisplay() {
     }
 
     /**
-     * Ensure that URLs in this administrative monitor are only accessible to users with {@link #getRequiredPermission()}.
+     * Ensure that URLs in this administrative monitor are only accessible to users
+     * with {@link #getRequiredPermission()}.
      */
     @Override
     @Restricted(NoExternalUse.class)

core/src/main/resources/hudson/model/Messages.properties

@@ -427,3 +427,8 @@ ManagementLink.Category.UNCATEGORIZED=Uncategorized
 FileParameterValue.IndexTitle=File Parameters
 
 UserPreferencesProperty.DisplayName=Preferences
+
+Snooze=Snooze
+Snooze.duration.label=Snooze duration in minutes
+Snooze.duration.placeholder=Minutes
+Snooze.duration.title=Enter duration in minutes (max 525600 = 1 year)

core/src/main/resources/jenkins/diagnostics/ControllerExecutorsAgents/message.jelly

@@ -38,7 +38,21 @@ THE SOFTWARE.
           <input type="hidden" name="${h.crumbRequestField}" value="${h.getCrumb(request)}"/>
         </j:if>
         <input type="hidden" name="duration" value="custom"/>
-        <input type="number" name="customMinutes" placeholder="Minutes" min="1" style="width: 80px;" class="jenkins-input" required="required"/>
+        <label for="snooze-minutes-${it.id}" class="jenkins-visually-hidden">
+          ${%Snooze.duration.label}
+        </label>
+        <input type="number" 
+               id="snooze-minutes-${it.id}"
+               name="customMinutes" 
+               placeholder="${%Snooze.duration.placeholder}" 
+               min="1" 
+               max="525600"
+               step="1"
+               style="width: 80px;" 
+               class="jenkins-input" 
+               required="required"
+               aria-label="${%Snooze.duration.label}"
+               title="${%Snooze.duration.title}"/>
         <f:submit value="${%Snooze}"/>
       </form>
     </div>

core/src/main/resources/jenkins/diagnostics/ControllerExecutorsNoAgents/message.jelly

@@ -39,7 +39,21 @@ THE SOFTWARE.
           <input type="hidden" name="${h.crumbRequestField}" value="${h.getCrumb(request)}"/>
         </j:if>
         <input type="hidden" name="duration" value="custom"/>
-        <input type="number" name="customMinutes" placeholder="Minutes" min="1" style="width: 80px;" class="jenkins-input" required="required"/>
+        <label for="snooze-minutes-${it.id}" class="jenkins-visually-hidden">
+          ${%Snooze.duration.label}
+        </label>
+        <input type="number" 
+               id="snooze-minutes-${it.id}"
+               name="customMinutes" 
+               placeholder="${%Snooze.duration.placeholder}" 
+               min="1" 
+               max="525600"
+               step="1"
+               style="width: 80px;" 
+               class="jenkins-input" 
+               required="required"
+               aria-label="${%Snooze.duration.label}"
+               title="${%Snooze.duration.title}"/>
         <f:submit value="${%Snooze}"/>
       </form>
     </div>

core/src/main/resources/jenkins/model/BuiltInNodeMigration/message.jelly

@@ -14,7 +14,21 @@
                     <input type="hidden" name="${h.crumbRequestField}" value="${h.getCrumb(request)}"/>
                 </j:if>
                 <input type="hidden" name="duration" value="custom"/>
-                <input type="number" name="customMinutes" placeholder="Minutes" min="1" style="width: 80px;" class="jenkins-input" required="required"/>
+                <label for="snooze-minutes-${it.id}" class="jenkins-visually-hidden">
+                    ${%Snooze.duration.label}
+                </label>
+                <input type="number" 
+                       id="snooze-minutes-${it.id}"
+                       name="customMinutes" 
+                       placeholder="${%Snooze.duration.placeholder}" 
+                       min="1" 
+                       max="525600"
+                       step="1"
+                       style="width: 80px;" 
+                       class="jenkins-input" 
+                       required="required"
+                       aria-label="${%Snooze.duration.label}"
+                       title="${%Snooze.duration.title}"/>
                 <f:submit value="${%Snooze}"/>
             </form>
         </div>