-
Type:
Bug
-
Resolution: Fixed
-
Priority:
Major
-
Component/s: build-token-root-plugin
Just like similar plugins, (e.g. GitHub and GitLab), the Build Token Root Plugin does not play nice whith CSRF protection enabled.
The root cause seems to be JENKINS-22474 (documented by Jesse Glick), but until that is fixed, the Build Token Root Plugin should probably add a CrumbExclusion for the URL it is listening on.
See JENKINS-20140 for a similar issue in the GitHub Plugin, that has been resolved.
- is related to
-
-
- Resolved
-
