Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-55654

infinite redirect loop when auth provider is oidc (after update to 2.160)

    • 1.5

      hey there,

      we just updated to 2.160 today and had to switch back to a version before because:

      • jenkins was ending up in a redirect loop
      • we use the keycloak plugin (keycloak auth backend)
      • also could recreate the same issue with the oidc-auth-plugin (same)
      • we deleted cookies on the local browser (same)
      • we purged user related sessions in keycloak (same)
      • and tested the same in some virgin incognito browser window. (same)
      • when switching back to 2.159 all works as expected and before

      need some more informations?

      could someone look into this?

          [JENKINS-55654] infinite redirect loop when auth provider is oidc (after update to 2.160)

          Tobias Herrmann Hinz created issue -
          Tobias Herrmann Hinz made changes -
          Summary Original: infinite redirect loop when auth provider is oidc New: infinite redirect loop when auth provider is oidc (after update to 2.160)
          Oleg Nenashev made changes -
          Labels Original: OAuth jenkins keycloak oidc New: OAuth jenkins keycloak oidc regression

          Oleg Nenashev added a comment -

          Oleg Nenashev added a comment - CC wfollonier danielbeck  

          Jack Ivy added a comment -

          We use LTS and when I updated to 2.150.2 we started getting an infinite redirect back and forth between Jenkins and login.microsoft.com when using the Azure AD plugin for authentication.  I had to roll back to 2.150.1.

          Jack Ivy added a comment - We use LTS and when I updated to 2.150.2 we started getting an infinite redirect back and forth between Jenkins and login.microsoft.com when using the Azure AD plugin for authentication.  I had to roll back to 2.150.1.

          The same here with Bitbucket OAuth plugin. After success authentification on bitbucket site system redirects me to securityRealm/finishLogin url, wich which will fail and the loop starts again.
          plugin version 0.8
          jenkins version 2.150.2

          aleksey savitskiy added a comment - The same here with Bitbucket OAuth plugin. After success authentification on bitbucket site system redirects me to securityRealm/finishLogin url, wich which will fail and the loop starts again. plugin version 0.8 jenkins version 2.150.2
          Tobias Herrmann Hinz made changes -
          Priority Original: Critical [ 2 ] New: Blocker [ 1 ]
          Wadeck Follonier made changes -
          Component/s New: oic-auth-plugin [ 21661 ]
          Component/s Original: core [ 15593 ]

          herrmannhinz Please could you test with the PR I proposed: https://github.com/jenkinsci/oic-auth-plugin/pull/56 ?

          Wadeck Follonier added a comment - herrmannhinz Please could you test with the PR I proposed: https://github.com/jenkinsci/oic-auth-plugin/pull/56 ?

          jdivy Azure AD seems corrected with version 0.3.2 released on Jan 18.

          Wadeck Follonier added a comment - jdivy Azure AD seems corrected with version 0.3.2 released on Jan 18.

            wfollonier Wadeck Follonier
            herrmannhinz Tobias Herrmann Hinz
            Votes:
            2 Vote for this issue
            Watchers:
            9 Start watching this issue

              Created:
              Updated:
              Resolved: