-
Bug
-
Resolution: Unresolved
-
Major
-
None
Jenkins GitHub plugin requires a user with administration access to manage hooks:
"There is no credentials with admin access to manage hooks on GitHubRepositoryName[host=example.org,username=username,repository=repository]"
Such approach does not match our security guidelines, so we manage all hooks manually (from GitHub UI). Unfortunately, Jenkins still tries to manage webhooks even when we didn't ask to do it. Our servers list is empty:
I searched for any option which will allow disable this behavior but I didn't find anything. This is the configuration of SCM for our projects:
I believe it is a bug because Jenkins shouldn't do stuff, when we don't configure it. If this behavior is expected, then this ticket should be changed to a feature:
Allow disabling managing webhooks when no GitHub server is configured
- relates to
-
JENKINS-49332 Jenkins unable to manage webhooks of Github organization
-
- Open
-
-
JENKINS-57351 Support for making Jenkins a "GitHub App"
-
- Resolved
-
This annoys me too, so finally got to try making a fix: https://github.com/jenkinsci/github-plugin/pull/226
In our use-case, there are a lot of stack traces (probably the majority of what the jenkins instance logs) while there is no credential set up AND the "Manage hooks" is unchecked. So it is supposed to not try managing, somewhat intentionally (our Jenkins is inside corporate perimeter, Github can't access it anyway).
Note that according to help message for the "Manage Hooks" checkbox, there may be other places in code where it would check for credentials:
> Will this configuration be used to manage credentials for repositories where it
> has admin rights? If unchecked, this credentials still can be used to
> manipulate commit statuses, but will be ignored to manage hooks.
But the noisy (and in our case pointless) error message is only associated with register/unregister activity.