[JENKINS-13138] Verify action doesn't work with CSRF option

Type: Bug
Resolution: Fixed
Priority: Minor
Component/s: html5-notifier-plugin
Labels:
- csrf
- mantis
Environment:
Debian x64

Similar Issues:
Powered by SuggestiMate

Show

Etat HTTP 403 - No valid crumb was included in the request

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

mantis.jpg
56 kB
2012-03-19 15:44

sogabe added a comment - 2012-03-19 16:40

I can not reproduce it.
Let me know how to reporoduce?

sogabe added a comment - 2012-03-19 16:40 I can not reproduce it. Let me know how to reporoduce?

Sébastien Heurtematte added a comment - 2012-03-20 08:36

I was able to isolate the main problem.
It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF protection.
There is an active bug about this problem : ~~JENKINS-13038~~

You can reproduce with these steps :

plugin mantis and html5 notifier in jenkins plugin directory
activate CSRF protection with "Default Crumb Issuer"
test verify action

Sébastien Heurtematte added a comment - 2012-03-20 08:36 I was able to isolate the main problem. It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF protection. There is an active bug about this problem : JENKINS-13038 You can reproduce with these steps : plugin mantis and html5 notifier in jenkins plugin directory activate CSRF protection with "Default Crumb Issuer" test verify action

sogabe added a comment - 2012-03-21 11:58

html5-notifier SNAPSHOT will resolve this issue. So wait untill it released.

sogabe added a comment - 2012-03-21 11:58 html5-notifier SNAPSHOT will resolve this issue. So wait untill it released.

jieryn added a comment - 2012-04-06 12:27

html5-notifier-plugin:1.2 was released: http://maven.jenkins-ci.org/content/repositories/releases/org/jenkins-ci/plugins/html5-notifier-plugin/1.2/

jieryn added a comment - 2012-04-06 12:27 html5-notifier-plugin:1.2 was released: http://maven.jenkins-ci.org/content/repositories/releases/org/jenkins-ci/plugins/html5-notifier-plugin/1.2/

Assignee:: Unassigned

Reporter:: Sébastien Heurtematte

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2012-03-19 15:44

Updated:: 2012-04-06 12:27

Resolved:: 2012-04-06 12:27

Jenkins

Details

Description

Attachments

Attachments

Activity

Collapse comment: sogabe added a comment - 2012-03-19 16:40

Expand comment: sogabe added a comment - 2012-03-19 16:40

Collapse comment: Sébastien Heurtematte added a comment - 2012-03-20 08:36

Expand comment: Sébastien Heurtematte added a comment - 2012-03-20 08:36

Collapse comment: sogabe added a comment - 2012-03-21 11:58

Expand comment: sogabe added a comment - 2012-03-21 11:58

Collapse comment: jieryn added a comment - 2012-04-06 12:27

Expand comment: jieryn added a comment - 2012-04-06 12:27

People

Dates