Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-61885

setting the system property hudson.security.csrf.CrumbFilter.UNPROCESSED_PATHINFO to true is no use to disable csrf

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not A Defect
    • Icon: Critical Critical
    • _unsorted
    • None
    • centos 7.x
      jenkins 2.230

      http request show

      ```
      Error 403 No valid crumb was included in the request
      ```
      and following https://jenkins.io/security/advisory/2020-03-25/#SECURITY-1774
      to disable this security fix by setting the system property hudson.security.csrf.CrumbFilter.UNPROCESSED_PATHINFO to true
      but  still show Error 403 No valid crumb was included in the request

       

            Unassigned Unassigned
            zhaoying818 zhao ying
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: