Details
-
Bug
-
Status: Closed (View Workflow)
-
Minor
-
Resolution: Fixed
-
Debian x64
Description
Etat HTTP 403 - No valid crumb was included in the request
Attachments
Activity
Sébastien Heurtematte
added a comment - I was able to isolate the main problem.
It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF protection.
There is an active bug about this problem : JENKINS-13038
You can reproduce with these steps :
- plugin mantis and html5 notifier in jenkins plugin directory
- activate CSRF protection with "Default Crumb Issuer"
- test verify action
Sébastien Heurtematte
added a comment - I was able to isolate the main problem.
It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF protection.
There is an active bug about this problem : JENKINS-13038
You can reproduce with these steps :
plugin mantis and html5 notifier in jenkins plugin directory
activate CSRF protection with "Default Crumb Issuer"
test verify action
html5-notifier SNAPSHOT will resolve this issue. So wait untill it released.
html5-notifier-plugin:1.2 was released: http://maven.jenkins-ci.org/content/repositories/releases/org/jenkins-ci/plugins/html5-notifier-plugin/1.2/
I can not reproduce it.
Let me know how to reporoduce?