Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-64825

Schedule build does not schedule build

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Open (View Workflow)
    • Priority: Minor
    • Resolution: Unresolved
    • Component/s: schedule-build-plugin
    • Labels:
      None
    • Environment:
      Jenkins 2.263.3, Debian 10.8, AdoptOpenJDK 11.0.10+9, latest Firefox (85.0 64bit) on Windows 10
    • Similar Issues:

      Description

      When I'm scheduling a build via the "schedule build" button, nothing happens. A reload also shows no change. A build is not scheduled. There is nothing in the log indicating an error. Scheduling a build manually via URL (wget .../jenkins/job/Project/build?delay=...) works. This is in a reverse proxy configuration; Crumb issuer is configured as "Default Crumb Issuer", proxy compatibility is enabled. The setting mentioned in JENKINS-25116 ("Prevent Cross Site Request Forgery exploits") doesn't seem to exist anymore in this version.

      With the web developer console, I might have found something relevant. It seems the POST request is issued via http, and therefore seems to be blocked by Firefox as mixed content (we're using exclusively https). I checked against a different installation of Jenkins, same platform, same versions of Jenkins and plugin, same settings regarding csrf, though Oracle JDK 1.8.0_171-8 and older Debian (8.11). There the request is https, and everything works nicely. Any things I could check, any settings which could induce that behaviour? Thanks in advance.

        Attachments

          Activity

          Hide
          jejo jo added a comment - - edited

          There is a difference between the Apache proxy configurations. The working one is using a rewrite rule to change http to https requests, the non-working one a redirect permanent. The XForwardedProto is set in both configurations, but may not be evaluated by the plugin? Just an observation I can't test right now.

          Edit- I configured the working one to use a "redirect permanent", too, but it still works nicely. So this one was a dead end, alas.

          Show
          jejo jo added a comment - - edited There is a difference between the Apache proxy configurations. The working one is using a rewrite rule to change http to https requests, the non-working one a redirect permanent. The X Forwarded Proto is set in both configurations, but may not be evaluated by the plugin? Just an observation I can't test right now. Edit- I configured the working one to use a "redirect permanent", too, but it still works nicely. So this one was a dead end, alas.
          Hide
          jejo jo added a comment - - edited

          Before that, there is a request:

          POST /jenkins/job/Job-Name/schedule/next HTTP/1.1\r\n
          Origin: https://jenkinsfqdn\r\n
          Upgrade-Insecure-Requests: 1\r\n
          X-Forwarded-Proto: https\r\n
          X-Forwarded-Port: 443\r\n

          with answer:

          .. <script>sumbitScheduleRequest("http://jenkinsfqdn/jenkins/job/Job-Name/", 42850, false);</script>...

          There, the URL parameter should be https for all I know, but is indeed http. Would be interesting to know how "next" compiles that url...

           

          Show
          jejo jo added a comment - - edited Before that, there is a request: POST /jenkins/job/Job-Name/schedule/next HTTP/1.1\r\n Origin: https://jenkinsfqdn\r\n Upgrade-Insecure-Requests: 1\r\n X-Forwarded-Proto: https\r\n X-Forwarded-Port: 443\r\n with answer: .. <script>sumbitScheduleRequest("http://jenkinsfqdn/jenkins/job/Job-Name/", 42850, false);</script>... There, the URL parameter  should be https for all I know, but is indeed http. Would be interesting to know how "next" compiles that url...  

            People

            Assignee:
            Unassigned Unassigned
            Reporter:
            jejo jo
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated: