-
Type:
Bug
-
Resolution: Fixed
-
Priority:
Major
-
Component/s: core, saml-plugin
-
Environment:Jenkins: 2.361.2
OS: Linux - 3.10.0-1160.6.1.el7.x86_64
---
ace-editor:1.1
adoptopenjdk:1.5
analysis-core:1.96
analysis-model-api:10.17.0
ansicolor:1.0.2
ant:481.v7b_09e538fcca
antisamy-markup-formatter:2.7
apache-httpcomponents-client-4-api:4.5.13-138.v4e7d9a_7b_a_e61
authentication-tokens:1.4
badge:1.9.1
basic-branch-build-strategies:71.vc1421f89888e
bootstrap4-api:4.6.0-5
bootstrap5-api:5.2.1-3
bouncycastle-api:2.26
branch-api:2.1046.v0ca_37783ecc5
build-monitor-plugin:1.13+build.202205140447
build-timeout:1.24
buildtriggerbadge:251.vdf6ef853f3f5
caffeine-api:2.9.3-65.v6a_47d0f4d1fe
categorized-view:1.12
checks-api:1.7.5
cloudbees-folder:6.758.vfd75d09eea_a_1
cobertura:1.17-SNAPSHOT (private-22e28585-rbaradari)
code-coverage-api:3.2.0
command-launcher:90.v669d7ccb_7c31
commons-lang3-api:3.12.0-36.vd97de6465d5b_
commons-text-api:1.10.0-27.vb_fa_3896786a_7
config-file-provider:3.11.1
credentials:1189.vf61b_a_5e2f62e
credentials-binding:523.vd859a_4b_122e6
cucumber-reports:5.7.3
dark-theme:255.v364936264de8
dashboard-view:2.447.vda_124dd35f11
data-tables-api:1.12.1-4
dependency-check-jenkins-plugin:5.2.0
description-setter:1.10
disk-usage:0.28
display-url-api:2.3.6
docker-commons:1.21
docker-java-api:3.2.13-37.vf3411c9828b9
docker-plugin:1.2.10
docker-workflow:521.v1a_a_dd2073b_2e
dry:3.0.0
durable-task:501.ve5d4fc08b0be
echarts-api:5.4.0-1
email-ext:2.92
extended-choice-parameter:346.vd87693c5a_86c
external-monitor-job:203.v683c09d993b_9
favorite:2.4.1
findbugs:5.0.0
font-awesome-api:6.2.0-3
forensics-api:1.16.0
git:4.12.1
git-client:3.12.1
git-forensics:1.11.0
git-parameter:0.9.18
git-server:99.va_0826a_b_cdfa_d
gitlab-api:5.0.1-78.v47a_45b_9f78b_7
gitlab-branch-source:642.v9ed86b_b_54384
gitlab-plugin:1.5.36
gradle:1.40
groovy:453.vcdb_a_c5c99890
handlebars:3.0.8
handy-uri-templates-2-api:2.1.8-22.v77d5b_75e6953
htmlpublisher:1.31
http_request:1.16
instance-identity:116.vf8f487400980
ionicons-api:31.v4757b_6987003
ivy:2.2
jackson2-api:2.13.4.20221013-295.v8e29ea_354141
jacoco:3.3.2
jakarta-activation-api:2.0.1-2
jakarta-mail-api:2.0.1-2
javadoc:226.v71211feb_e7e9
javax-activation-api:1.2.0-5
javax-mail-api:1.6.2-8
jaxb:2.3.7-1
jdk-tool:55.v1b_32b_6ca_f9ca
jersey2-api:2.37-1
jira:3.8
jmh-report:0.9.0
jnr-posix-api:3.1.15-2
jobConfigHistory:1176.v1b_4290db_41a_5
jquery:1.12.4-1
jquery3-api:3.6.1-2
jsch:0.1.55.61.va_e9ee26616e7
jump-to-scm:1.1.1
junit:1153.v1c24f1a_d2553
ldap:2.12
lockable-resources:2.18
logs-per-stage-plugin:1.0-SNAPSHOT (private-ad336312-t.mucs)
mailer:438.v02c7f0a_12fa_4
material-theme:0.5.2-rc100.6121925fe229
matrix-auth:3.1.5
matrix-project:785.v06b_7f47b_c631
maven-plugin:3.20
mina-sshd-api-common:2.9.1-44.v476733c11f82
mina-sshd-api-core:2.9.1-44.v476733c11f82
momentjs:1.1.1
nested-view:1.19.1
nodejs:1.5.1
nodenamecolumn:1.2
nomad:0.9.3
pam-auth:1.10
parameter-separator:1.3
permissive-script-security:0.7
pipeline-build-step:2.18
pipeline-graph-analysis:195.v5812d95a_a_2f9
pipeline-groovy-lib:613.v9c41a_160233f
pipeline-input-step:456.vd8a_957db_5b_e9
pipeline-milestone-step:101.vd572fef9d926
pipeline-model-api:2.2118.v31fd5b_9944b_5
pipeline-model-definition:2.2118.v31fd5b_9944b_5
pipeline-model-extensions:2.2118.v31fd5b_9944b_5
pipeline-rest-api:2.27
pipeline-stage-step:296.v5f6908f017a_5
pipeline-stage-tags-metadata:2.2118.v31fd5b_9944b_5
pipeline-stage-view:2.27
pipeline-utility-steps:2.13.0
plain-credentials:139.ved2b_9cf7587b
plugin-util-api:2.18.0
pmd:4.0.0
popper-api:1.16.1-3
popper2-api:2.11.6-2
prism-api:1.29.0-1
rebuild:1.34
release:2.14
role-strategy:562.v44e9a_e828d0e
saml:4.367.v4f342c34459a
scm-api:621.vda_a_b_055e58f7
script-security:1189.vb_a_b_7c8fd5fde
scriptler:3.5
simple-theme-plugin:103.va_161d09c38c7
skip-certificate-check:1.0
snakeyaml-api:1.32-86.ve3f030a_75631
solarized-theme:0.1
ssh-credentials:305.v8f4381501156
ssh-slaves:2.854.v7fd446b_337c9
sshd:3.249.v2dc2ea_416e33
structs:324.va_f5d6774f3a_d
tasks:4.53
theme-manager:1.5
thinBackup:1.12
timestamper:1.20
token-macro:308.v4f2b_ed62b_b_16
trilead-api:2.72.v2a_3236754f73
uno-choice:2.6.3
variant:59.vf075fe829ccb
violations:0.7.11
warnings:5.0.2
warnings-ng:9.20.1
windows-slaves:1.8.1
workflow-aggregator:590.v6a_d052e5a_a_b_5
workflow-api:1200.v8005c684b_a_c6
workflow-basic-steps:994.vd57e3ca_46d24
workflow-cps:2803.v1a_f77ffcc773
workflow-cps-global-lib:588.v576c103a_ff86
workflow-durable-task-step:1206.v8a_d5f86e336b
workflow-job:1249.v7d974144cc14
workflow-multibranch:716.vc692a_e52371b_
workflow-scm-step:400.v6b_89a_1317c9a_
workflow-step-api:639.v6eca_cd8c04a_a_
workflow-support:839.v35e2736cfd5c
xvnc:1.28
Jenkins runs in a container, compose.yml:
version: "3.9"
services:
jenkins:
image: jenkins/jenkins:2.361.2-jdk11
command: --httpPort=8080 --httpsPort=8081 --httpsKeyStore=/var/jenkins_home/jenkins.jks --httpsKeyStorePassword=**** --sessionTimeout=1440 --sessionEviction=43200
ports:
- "8080:8080"
- "443:8081"
extra_hosts:
...
volumes:
...
We have SAML login enabled. Security Realm settings:
IdP Metadata: (blank)
IdP Metadata URL: https://(censored)/some/inner/paths/saml/descriptor
Refresh period: 0
Display Name Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
Group Attribute: http://schemas.xmlsoap.org/claims/Group
Maximum Authentication Lifetime: 86400
Username Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
Email Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
Username Case Conversion: none
Data Binding Method: HTTP-Post
Logout URL (blank)
Advanced Configuration: Advanced Configuration: SP entity ID: jenkins and some encryption related settings
My web browser: Firefox 105.0.3
Jenkins: 2.361.2 OS: Linux - 3.10.0-1160.6.1.el7.x86_64 --- ace-editor:1.1 adoptopenjdk:1.5 analysis-core:1.96 analysis-model-api:10.17.0 ansicolor:1.0.2 ant:481.v7b_09e538fcca antisamy-markup-formatter:2.7 apache-httpcomponents-client-4-api:4.5.13-138.v4e7d9a_7b_a_e61 authentication-tokens:1.4 badge:1.9.1 basic-branch-build-strategies:71.vc1421f89888e bootstrap4-api:4.6.0-5 bootstrap5-api:5.2.1-3 bouncycastle-api:2.26 branch-api:2.1046.v0ca_37783ecc5 build-monitor-plugin:1.13+build.202205140447 build-timeout:1.24 buildtriggerbadge:251.vdf6ef853f3f5 caffeine-api:2.9.3-65.v6a_47d0f4d1fe categorized-view:1.12 checks-api:1.7.5 cloudbees-folder:6.758.vfd75d09eea_a_1 cobertura:1.17-SNAPSHOT (private-22e28585-rbaradari) code-coverage-api:3.2.0 command-launcher:90.v669d7ccb_7c31 commons-lang3-api:3.12.0-36.vd97de6465d5b_ commons-text-api:1.10.0-27.vb_fa_3896786a_7 config-file-provider:3.11.1 credentials:1189.vf61b_a_5e2f62e credentials-binding:523.vd859a_4b_122e6 cucumber-reports:5.7.3 dark-theme:255.v364936264de8 dashboard-view:2.447.vda_124dd35f11 data-tables-api:1.12.1-4 dependency-check-jenkins-plugin:5.2.0 description-setter:1.10 disk-usage:0.28 display-url-api:2.3.6 docker-commons:1.21 docker-java-api:3.2.13-37.vf3411c9828b9 docker-plugin:1.2.10 docker-workflow:521.v1a_a_dd2073b_2e dry:3.0.0 durable-task:501.ve5d4fc08b0be echarts-api:5.4.0-1 email-ext:2.92 extended-choice-parameter:346.vd87693c5a_86c external-monitor-job:203.v683c09d993b_9 favorite:2.4.1 findbugs:5.0.0 font-awesome-api:6.2.0-3 forensics-api:1.16.0 git:4.12.1 git-client:3.12.1 git-forensics:1.11.0 git-parameter:0.9.18 git-server:99.va_0826a_b_cdfa_d gitlab-api:5.0.1-78.v47a_45b_9f78b_7 gitlab-branch-source:642.v9ed86b_b_54384 gitlab-plugin:1.5.36 gradle:1.40 groovy:453.vcdb_a_c5c99890 handlebars:3.0.8 handy-uri-templates-2-api:2.1.8-22.v77d5b_75e6953 htmlpublisher:1.31 http_request:1.16 instance-identity:116.vf8f487400980 ionicons-api:31.v4757b_6987003 ivy:2.2 jackson2-api:2.13.4.20221013-295.v8e29ea_354141 jacoco:3.3.2 jakarta-activation-api:2.0.1-2 jakarta-mail-api:2.0.1-2 javadoc:226.v71211feb_e7e9 javax-activation-api:1.2.0-5 javax-mail-api:1.6.2-8 jaxb:2.3.7-1 jdk-tool:55.v1b_32b_6ca_f9ca jersey2-api:2.37-1 jira:3.8 jmh-report:0.9.0 jnr-posix-api:3.1.15-2 jobConfigHistory:1176.v1b_4290db_41a_5 jquery:1.12.4-1 jquery3-api:3.6.1-2 jsch:0.1.55.61.va_e9ee26616e7 jump-to-scm:1.1.1 junit:1153.v1c24f1a_d2553 ldap:2.12 lockable-resources:2.18 logs-per-stage-plugin:1.0-SNAPSHOT (private-ad336312-t.mucs) mailer:438.v02c7f0a_12fa_4 material-theme:0.5.2-rc100.6121925fe229 matrix-auth:3.1.5 matrix-project:785.v06b_7f47b_c631 maven-plugin:3.20 mina-sshd-api-common:2.9.1-44.v476733c11f82 mina-sshd-api-core:2.9.1-44.v476733c11f82 momentjs:1.1.1 nested-view:1.19.1 nodejs:1.5.1 nodenamecolumn:1.2 nomad:0.9.3 pam-auth:1.10 parameter-separator:1.3 permissive-script-security:0.7 pipeline-build-step:2.18 pipeline-graph-analysis:195.v5812d95a_a_2f9 pipeline-groovy-lib:613.v9c41a_160233f pipeline-input-step:456.vd8a_957db_5b_e9 pipeline-milestone-step:101.vd572fef9d926 pipeline-model-api:2.2118.v31fd5b_9944b_5 pipeline-model-definition:2.2118.v31fd5b_9944b_5 pipeline-model-extensions:2.2118.v31fd5b_9944b_5 pipeline-rest-api:2.27 pipeline-stage-step:296.v5f6908f017a_5 pipeline-stage-tags-metadata:2.2118.v31fd5b_9944b_5 pipeline-stage-view:2.27 pipeline-utility-steps:2.13.0 plain-credentials:139.ved2b_9cf7587b plugin-util-api:2.18.0 pmd:4.0.0 popper-api:1.16.1-3 popper2-api:2.11.6-2 prism-api:1.29.0-1 rebuild:1.34 release:2.14 role-strategy:562.v44e9a_e828d0e saml:4.367.v4f342c34459a scm-api:621.vda_a_b_055e58f7 script-security:1189.vb_a_b_7c8fd5fde scriptler:3.5 simple-theme-plugin:103.va_161d09c38c7 skip-certificate-check:1.0 snakeyaml-api:1.32-86.ve3f030a_75631 solarized-theme:0.1 ssh-credentials:305.v8f4381501156 ssh-slaves:2.854.v7fd446b_337c9 sshd:3.249.v2dc2ea_416e33 structs:324.va_f5d6774f3a_d tasks:4.53 theme-manager:1.5 thinBackup:1.12 timestamper:1.20 token-macro:308.v4f2b_ed62b_b_16 trilead-api:2.72.v2a_3236754f73 uno-choice:2.6.3 variant:59.vf075fe829ccb violations:0.7.11 warnings:5.0.2 warnings-ng:9.20.1 windows-slaves:1.8.1 workflow-aggregator:590.v6a_d052e5a_a_b_5 workflow-api:1200.v8005c684b_a_c6 workflow-basic-steps:994.vd57e3ca_46d24 workflow-cps:2803.v1a_f77ffcc773 workflow-cps-global-lib:588.v576c103a_ff86 workflow-durable-task-step:1206.v8a_d5f86e336b workflow-job:1249.v7d974144cc14 workflow-multibranch:716.vc692a_e52371b_ workflow-scm-step:400.v6b_89a_1317c9a_ workflow-step-api:639.v6eca_cd8c04a_a_ workflow-support:839.v35e2736cfd5c xvnc:1.28 Jenkins runs in a container, compose.yml: version: "3.9" services: jenkins: image: jenkins/jenkins:2.361.2-jdk11 command: --httpPort=8080 --httpsPort=8081 --httpsKeyStore=/var/jenkins_home/jenkins.jks --httpsKeyStorePassword=**** --sessionTimeout=1440 --sessionEviction=43200 ports: - "8080:8080" - "443:8081" extra_hosts: ... volumes: ... We have SAML login enabled. Security Realm settings: IdP Metadata: (blank) IdP Metadata URL: https://(censored)/some/inner/paths/saml/descriptor Refresh period: 0 Display Name Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name Group Attribute: http://schemas.xmlsoap.org/claims/Group Maximum Authentication Lifetime: 86400 Username Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress Email Attribute: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress Username Case Conversion: none Data Binding Method: HTTP-Post Logout URL (blank) Advanced Configuration: Advanced Configuration: SP entity ID: jenkins and some encryption related settings My web browser: Firefox 105.0.3
-
4.369.v13507586ef8c
We experienced the following issue after we upgraded from Jenkins 2.346.3 to 2.361.2, at the same time SAML Plugin 2.333.vc81e525974a_c to 4.367.v4f342c34459a).
Â
Expected:
Given: Jenkins has started up, user is not logged in.
When User clicks log in (top right corner)
Then the user is brought to the SAML login page
Â
Actual:
Given: Jenkins has started up, user is not logged in.
When User clicks log in (top right corner)
Then an error message is shown: "This URL requires POST. The URL you're trying to access requires that requests be sent using POST (like a form submission). The button below allows you to retry accessing this URL using POST. 
Â
No error error is written to the log when this error is displayed. Clicking the "Retry using POST" button continues the login process properly.
- links to
