Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-13138

Verify action doesn't work with CSRF option

    XMLWordPrintable

Details

    Description


      Etat HTTP 403 - No valid crumb was included in the request

      Attachments

        Activity

          sogabe sogabe added a comment -

          I can not reproduce it.
          Let me know how to reporoduce?

          sogabe sogabe added a comment - I can not reproduce it. Let me know how to reporoduce?

          I was able to isolate the main problem.
          It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF protection.
          There is an active bug about this problem : JENKINS-13038

          You can reproduce with these steps :

          • plugin mantis and html5 notifier in jenkins plugin directory
          • activate CSRF protection with "Default Crumb Issuer"
          • test verify action
          heurtemattes Sébastien Heurtematte added a comment - I was able to isolate the main problem. It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF protection. There is an active bug about this problem : JENKINS-13038 You can reproduce with these steps : plugin mantis and html5 notifier in jenkins plugin directory activate CSRF protection with "Default Crumb Issuer" test verify action
          sogabe sogabe added a comment -

          html5-notifier SNAPSHOT will resolve this issue. So wait untill it released.

          sogabe sogabe added a comment - html5-notifier SNAPSHOT will resolve this issue. So wait untill it released.
          jieryn jieryn added a comment - html5-notifier-plugin:1.2 was released: http://maven.jenkins-ci.org/content/repositories/releases/org/jenkins-ci/plugins/html5-notifier-plugin/1.2/

          People

            Unassigned Unassigned
            heurtemattes Sébastien Heurtematte
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: