Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-55654

infinite redirect loop when auth provider is oidc (after update to 2.160)

    • 1.5

      hey there,

      we just updated to 2.160 today and had to switch back to a version before because:

      • jenkins was ending up in a redirect loop
      • we use the keycloak plugin (keycloak auth backend)
      • also could recreate the same issue with the oidc-auth-plugin (same)
      • we deleted cookies on the local browser (same)
      • we purged user related sessions in keycloak (same)
      • and tested the same in some virgin incognito browser window. (same)
      • when switching back to 2.159 all works as expected and before

      need some more informations?

      could someone look into this?

          [JENKINS-55654] infinite redirect loop when auth provider is oidc (after update to 2.160)

          herrmannhinz Please could you test with the PR I proposed: https://github.com/jenkinsci/oic-auth-plugin/pull/56 ?

          Wadeck Follonier added a comment - herrmannhinz Please could you test with the PR I proposed: https://github.com/jenkinsci/oic-auth-plugin/pull/56 ?

          jdivy Azure AD seems corrected with version 0.3.2 released on Jan 18.

          Wadeck Follonier added a comment - jdivy Azure AD seems corrected with version 0.3.2 released on Jan 18.

          wfollonier can do. can i pull a build of that PR anywhere? or should i build it on my own?

          Tobias Herrmann Hinz added a comment - wfollonier can do. can i pull a build of that PR anywhere? or should i build it on my own?

          Wadeck Follonier added a comment - - edited

          herrmannhinz The CI build provides the built plugin: https://ci.jenkins.io/blue/organizations/jenkins/Plugins%2Foic-auth-plugin/detail/PR-56/1/artifacts

          As a nice think to know (esp. as it's not really user-friendly IMHO), you can find the link of the CI after clicking on the green tick in GitHub view.

          Bonus explanation in gif:

          Wadeck Follonier added a comment - - edited herrmannhinz The CI build provides the built plugin: https://ci.jenkins.io/blue/organizations/jenkins/Plugins%2Foic-auth-plugin/detail/PR-56/1/artifacts As a nice think to know (esp. as it's not really user-friendly IMHO), you can find the link of the CI after clicking on the green tick in GitHub view. Bonus explanation in gif:

          i'll give it a try.

          Tobias Herrmann Hinz added a comment - i'll give it a try.

          wfollonier - on it.

          Tobias Herrmann Hinz added a comment - wfollonier - on it.

          the oic-auth-plugin 1.5 with the pull request from wfollonier has been released, addressing this issue.

           

          see also https://github.com/jenkinsci/oic-auth-plugin/issues/54 and https://github.com/jenkinsci/oic-auth-plugin/pull/56

           

          Michael Bischoff added a comment - the oic-auth-plugin 1.5 with the pull request from wfollonier has been released, addressing this issue.   see also https://github.com/jenkinsci/oic-auth-plugin/issues/54  and https://github.com/jenkinsci/oic-auth-plugin/pull/56  

          Thank you mbischoff for the quick review / release!

          Wadeck Follonier added a comment - Thank you mbischoff for the quick review / release!

          Tobias Herrmann Hinz added a comment - - edited

          a new version of the keycloak plugin has been released as well. it works now. redirect issue has been resolved.

          https://github.com/jenkinsci/keycloak-plugin/releases/tag/keycloak-2.3.0

          Tobias Herrmann Hinz added a comment - - edited a new version of the keycloak plugin has been released as well. it works now. redirect issue has been resolved. https://github.com/jenkinsci/keycloak-plugin/releases/tag/keycloak-2.3.0

          Solved by Keycloak rleease

          Michael Doubez added a comment - Solved by Keycloak rleease

            wfollonier Wadeck Follonier
            herrmannhinz Tobias Herrmann Hinz
            Votes:
            2 Vote for this issue
            Watchers:
            9 Start watching this issue

              Created:
              Updated:
              Resolved: