Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-17087

Saving Jenkins Global Config wipes out the crumb issuer settings in the Global Security Config

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Blocker Blocker
    • core
    • None
    • Windows Server 2008 R2 SP1
      Jenkins 1.502

      When I go and enable the Prevent Cross Site Request Forgery exploits setting in the Configure Global Security page and save it everything seems to work fine. If I then go and update settings in the Global Configure System page the Prevent Cross Site Request Forgery Exploits setting is wiped out from the global config.xml file. This is easily seen by the JobConfigHistory plugin.

            jglick Jesse Glick
            peter_nordquist Peter Nordquist
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: