Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-20140

GitHub Web Hook does not work unless "Prevent Cross Site Request Forgery exploits" is disabled

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Major Major
    • github-plugin
    • None
    • Ubuntu 12.04, Jenkins 1.527, Jenkins GitHub plugin 1.8

      I can't get the GitHub plugin's web hooks to work unless I go into "Configure Global Security" and set "Prevent Cross Site Request Forgery exploits" to disabled.

      From my googling around [1], it seems that perhaps this plugin needs to add a CrumbExclusion?

      [1] https://issues.jenkins-ci.org/browse/JENKINS-10263

          [JENKINS-20140] GitHub Web Hook does not work unless "Prevent Cross Site Request Forgery exploits" is disabled

          Marius Gedminas added a comment - - edited

          Looks like a duplicate of https://issues.jenkins-ci.org/browse/JENKINS-10263

          Edit: never mind, I managed not to notice that you mentioned that exact same issue in the original report.

          Marius Gedminas added a comment - - edited Looks like a duplicate of https://issues.jenkins-ci.org/browse/JENKINS-10263 Edit: never mind, I managed not to notice that you mentioned that exact same issue in the original report.

          Code changed in jenkins
          User: Kohsuke Kawaguchi
          Path:
          pom.xml
          src/main/java/com/cloudbees/jenkins/GitHubWebHook.java
          src/main/java/com/cloudbees/jenkins/GitHubWebHookCrumbExclusion.java
          http://jenkins-ci.org/commit/github-plugin/e065b804f4f3eb7efcbb6ad4b61872b8d119c4f6
          Log:
          [FIXED JENKINS-20140] Merge pull request #35

          Compare: https://github.com/jenkinsci/github-plugin/compare/6d023ef37496...e065b804f4f3

          SCM/JIRA link daemon added a comment - Code changed in jenkins User: Kohsuke Kawaguchi Path: pom.xml src/main/java/com/cloudbees/jenkins/GitHubWebHook.java src/main/java/com/cloudbees/jenkins/GitHubWebHookCrumbExclusion.java http://jenkins-ci.org/commit/github-plugin/e065b804f4f3eb7efcbb6ad4b61872b8d119c4f6 Log: [FIXED JENKINS-20140] Merge pull request #35 Compare: https://github.com/jenkinsci/github-plugin/compare/6d023ef37496...e065b804f4f3

            Unassigned Unassigned
            karlmdavis karlmdavis
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Created:
              Updated:
              Resolved: