Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-2434

Misleading "Access Denied" message

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Duplicate
    • Icon: Critical Critical
    • _unsorted
    • None
    • Platform: All, OS: All

      For my Hudson project, I have configuration for Matrix-based security
      authorization of two user/group: "admin" and "hotfix". "admin" user has all
      privileges and "hotfix" user has just Read, Configure and Build privileges.

      When hotfix user made a mistake in configuration of subversion repository path
      then the following messages he got:

      Access Denied

      org.acegisecurity.providers.UsernamePasswordAuthenticationToken@ac2f8aa9:
      Username: hudson.security.HudsonPrivateSecurityRealm$Details@71d29a; Password:
      [PROTECTED]; Authenticated: true; Details:
      org.acegisecurity.ui.WebAuthenticationDetails@ffff10d0: RemoteIpAddress:
      129.146.85.177; SessionId: 5DE492A3C97CD86C218348F23EBDFC38; Granted
      Authorities: authenticated is missing Administer

      So, I used admin user account and fixed wrong subversion path. However,
      misleading message "Access Denied" still presented and only for "hotfix" users.
      I could remove this message only if I'll add Administer privileges for hotfix
      users, but for some security reasons, I don't want to do it.

          [JENKINS-2434] Misleading "Access Denied" message

          ssburlg created issue -

          nbudin added a comment -

          We're seeing this too. Not a huge deal, since I don't think it prevents anyone
          from doing anything they need to do, but it'd be nice to deal with it.

          nbudin added a comment - We're seeing this too. Not a huge deal, since I don't think it prevents anyone from doing anything they need to do, but it'd be nice to deal with it.

          Alan Harder added a comment -

          Does the error occur after entering the wrong path and moving focus out of that
          textbox, or when you click Save at the bottom?
          Please check the webserver log for an exception stack trace when this occurs and
          post that here in the bug report. Also please retest on 1.267 or newer to see
          if the problem still occurs.. there are some recent fixes in permission checks
          for validators on the configure screen, but not sure yet if that is the cause of
          this problem (exception stack trace will help).

          Alan Harder added a comment - Does the error occur after entering the wrong path and moving focus out of that textbox, or when you click Save at the bottom? Please check the webserver log for an exception stack trace when this occurs and post that here in the bug report. Also please retest on 1.267 or newer to see if the problem still occurs.. there are some recent fixes in permission checks for validators on the configure screen, but not sure yet if that is the cause of this problem (exception stack trace will help).

          Alan Harder added a comment -

          I'm pretty sure this comes from the validator, so marking this as a duplicate.
          Reopen if you see a problem in 1.268 or newer.

              • This issue has been marked as a duplicate of 2715 ***

          Alan Harder added a comment - I'm pretty sure this comes from the validator, so marking this as a duplicate. Reopen if you see a problem in 1.268 or newer. This issue has been marked as a duplicate of 2715 ***
          Alan Harder made changes -
          Resolution New: Duplicate [ 3 ]
          Status Original: Open [ 1 ] New: Resolved [ 5 ]
          Alan Harder made changes -
          Link New: This issue duplicates JENKINS-2715 [ JENKINS-2715 ]
          Andrew Bayer made changes -
          Status Original: Resolved [ 5 ] New: Closed [ 6 ]
          R. Tyler Croy made changes -
          Workflow Original: JNJira [ 132507 ] New: JNJira + In-Review [ 201465 ]
          Jenkins IRC Bot made changes -
          Component/s New: _unsorted [ 19622 ]
          Component/s Original: security [ 15508 ]

            Unassigned Unassigned
            ssburlg ssburlg
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Created:
              Updated:
              Resolved: