• Type: Bug
• Resolution: Fixed
• Priority: Minor
• Component/s: saml-plugin
• Labels:

  • saml
• Environment:

  OS: Amazon Linux release 2 (Karoo)
  Jenkins version: 2.282
  saml-plugin version: 2.0.0

[JENKINS-65093] Getting "java.lang.String cannot be cast to java.util.List" after upgrading to saml-plugin 2.0.0

Collapse comment: Andreya Kostov added a comment - 2021-03-11 19:43

Andreya Kostov added a comment - 2021-03-11 19:43

We've hit the same issue after upgrading to 2.0.0. It looks like the issue is that the plugin interprets the configured display name attribute as multi-value. The same is true for the email attribute. However, in the returned SAML assertion, these attributes are single-value. In my case, the offending attribute was "email" - the IDP does not return a display name attribute. Removing the email attribute mapping (although there's a tooltip that it's recommended to set it) solves the error.

Expand comment: Andreya Kostov added a comment - 2021-03-11 19:43

Andreya Kostov added a comment - 2021-03-11 19:43 We've hit the same issue after upgrading to 2.0.0. It looks like the issue is that the plugin interprets the configured display name attribute as multi-value . The same is true for the email attribute . However, in the returned SAML assertion, these attributes are single-value. In my case, the offending attribute was "email" - the IDP does not return a display name attribute. Removing the email attribute mapping (although there's a tooltip that it's recommended to set it) solves the error.

Collapse comment: Drew added a comment - 2021-03-15 13:34, Edited by Drew - 2021-03-15 13:35

Drew added a comment - 2021-03-15 13:34 - edited

We upgraded to 2.0.2, and are still getting the exception:

2021-03-15 08:17:27.000+0000 [id=14]    WARNING o.e.j.s.h.ContextHandler$Context#log: Error while serving http://jenkins.ourdomain.io/securityRealm/finishLogin
java.lang.ClassCastException: java.lang.String cannot be cast to java.util.List
        at org.jenkinsci.plugins.saml.SamlSecurityRealm.modifyUserFullName(SamlSecurityRealm.java:457)
        at org.jenkinsci.plugins.saml.SamlSecurityRealm.doFinishLogin(SamlSecurityRealm.java:336)
        at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627)
        at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396)
Caused: java.lang.reflect.InvocationTargetException

Note these exceptions popped up after we upgraded to saml-plugin 2.0.0

Expand comment: Drew added a comment - 2021-03-15 13:34, Edited by Drew - 2021-03-15 13:35

Drew added a comment - 2021-03-15 13:34 - edited We upgraded to 2.0.2, and are still getting the exception: 2021-03-15 08:17:27.000+0000 [id=14] WARNING o.e.j.s.h.ContextHandler$Context#log: Error while serving http: //jenkins.ourdomain.io/securityRealm/finishLogin java.lang.ClassCastException: java.lang. String cannot be cast to java.util.List at org.jenkinsci.plugins.saml.SamlSecurityRealm.modifyUserFullName(SamlSecurityRealm.java:457) at org.jenkinsci.plugins.saml.SamlSecurityRealm.doFinishLogin(SamlSecurityRealm.java:336) at java.lang.invoke.MethodHandle.invokeWithArguments(MethodHandle.java:627) at org.kohsuke.stapler.Function$MethodFunction.invoke(Function.java:396) Caused: java.lang.reflect.InvocationTargetException Note these exceptions popped up after we upgraded to saml-plugin 2.0.0

Collapse comment: Drew added a comment - 2021-03-19 02:12

Drew added a comment - 2021-03-19 02:12

ifernandezcalvo is there a PR linked to this?

Expand comment: Drew added a comment - 2021-03-19 02:12

Drew added a comment - 2021-03-19 02:12 ifernandezcalvo is there a PR linked to this?

Collapse comment: Ivan Fernandez Calvo added a comment - 2021-03-19 09:14, Edited by Ivan Fernandez Calvo - 2021-03-19 09:54

Ivan Fernandez Calvo added a comment - 2021-03-19 09:14 - edited

I just made it https://github.com/jenkinsci/saml-plugin/pull/96, there is an incremental version generated from the PR https://repo.jenkins-ci.org/incrementals/org/jenkins-ci/plugins/saml/2.0.3-rc229.ff6a67618aae/saml-2.0.3-rc229.ff6a67618aae.hpi Could you confirm me that it fixes the issue?

Expand comment: Ivan Fernandez Calvo added a comment - 2021-03-19 09:14, Edited by Ivan Fernandez Calvo - 2021-03-19 09:54

Ivan Fernandez Calvo added a comment - 2021-03-19 09:14 - edited I just made it https://github.com/jenkinsci/saml-plugin/pull/96 , there is an incremental version generated from the PR https://repo.jenkins-ci.org/incrementals/org/jenkins-ci/plugins/saml/2.0.3-rc229.ff6a67618aae/saml-2.0.3-rc229.ff6a67618aae.hpi Could you confirm me that it fixes the issue?

Collapse comment: Drew added a comment - 2021-03-22 17:48

Drew added a comment - 2021-03-22 17:48

We will wait for 2.0.3 to officially released to upgrade the plugin, then I'll let you know if it fixes the issue. Thanks!

Expand comment: Drew added a comment - 2021-03-22 17:48

Drew added a comment - 2021-03-22 17:48 We will wait for 2.0.3 to officially released to upgrade the plugin, then I'll let you know if it fixes the issue. Thanks!

Collapse comment: Drew added a comment - 2021-04-08 16:52

Drew added a comment - 2021-04-08 16:52

ifernandezcalvo are you waiting on us to verify if this works using the RC 2.0.3 version?

Expand comment: Drew added a comment - 2021-04-08 16:52

Drew added a comment - 2021-04-08 16:52 ifernandezcalvo are you waiting on us to verify if this works using the RC 2.0.3 version?

Collapse comment: Ivan Fernandez Calvo added a comment - 2021-04-09 08:46

Ivan Fernandez Calvo added a comment - 2021-04-09 08:46

no really, I was waiting to find the time to release, it uses to be on weekends. I just released 2.0.3

Expand comment: Ivan Fernandez Calvo added a comment - 2021-04-09 08:46

Ivan Fernandez Calvo added a comment - 2021-04-09 08:46 no really, I was waiting to find the time to release, it uses to be on weekends. I just released 2.0.3

Collapse comment: Drew added a comment - 2021-04-13 00:15

Drew added a comment - 2021-04-13 00:15

Issue fixed, thanks!

Expand comment: Drew added a comment - 2021-04-13 00:15

Drew added a comment - 2021-04-13 00:15 Issue fixed, thanks!