-
Bug
-
Resolution: Fixed
-
Blocker
-
None
-
Platform: All, OS: All
Hi @ll,
I've set up hudson (user administration of hudson itself) with Project-based
Matrix Authorization Strategy. I've added my name and gave myself all privileges
(including Read...). If I now close hudson (without doing something else) and
restart it by commandline, I get the following message and have no more access
to the configuration or anything else...
========================
Access Denied
org.acegisecurity.providers.UsernamePasswordAuthenticationToken@923d1bfd:
Username: hudson.security.HudsonPrivateSecurityRealm$Details@1d8417c; Password:
[PROTECTED]; Authenticated: true; Details:
org.acegisecurity.ui.WebAuthenticationDetails@255f8: RemoteIpAddress:
XXX.XXX.XXX.XXX; SessionId: 8013c98834de5a46ef9f6277930606ce; Granted
Authorities: authenticated is missing Read
========================
- is duplicated by
-
JENKINS-2375 project-based matrix repeatably gives: Granted Authorities: is missing Read
-
- Closed
-
> 1) what permissions are granted to Anonymous,
Anonymous - no permissions at all
> and are other permissions granted directly to particular users or are you
using groups?
mostly groups, but there are certain users too, although the user on which I am
testing this issue is not listed there directly, it just belongs to some of the
groups
> 2) does the problem only occur when you clicked "remember me" when logging in?
yes
> if you remove all hudson cookies and then visit the site, any errors?
no errors, just asks for login and password - seems that when this cookie is
present - ACEGI_SECURITY_HASHED_REMEMBER_ME_COOKIE - the the problem can be seen