-
Type:
Bug
-
Resolution: Not A Defect
-
Priority:
Major
-
Component/s: credentials-plugin
After upgrading all plugins over the weekend (2024-01-28), we cannot connect anymore via jenkins CLI.
As far as I know, nothing else changed (security settings, matrix based permissions).
We have never used tokens, but it also doesn't work with a token instead of a password.
Â
java -jar jenkins-cli.jar -s <URL> -auth <user>:<password> build test_job -s -v
Output:
Â
Â
io.jenkins.cli.shaded.jakarta.websocket.DeploymentException: Handshake error. Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.client.ClientManager$3$1.run(ClientManager.java:658) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.client.ClientManager$3.run(ClientManager.java:696) Â Â Â Â at java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:539) Â Â Â Â at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.client.ClientManager$SameThreadExecutorService.execute(ClientManager.java:849) Â Â Â Â at java.base/java.util.concurrent.AbstractExecutorService.submit(AbstractExecutorService.java:123) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.client.ClientManager.connectToServer(ClientManager.java:493) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.client.ClientManager.connectToServer(ClientManager.java:337) Â Â Â Â at hudson.cli.CLI.webSocketConnection(CLI.java:364) Â Â Â Â at hudson.cli.CLI._main(CLI.java:324) Â Â Â Â at hudson.cli.CLI.main(CLI.java:103) Caused by: io.jenkins.cli.shaded.org.glassfish.tyrus.core.HandshakeException: Response code was not 101: 403. Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.client.TyrusClientEngine.processResponse(TyrusClientEngine.java:301) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.ClientFilter.processRead(ClientFilter.java:167) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.Filter.onRead(Filter.java:111) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.Filter.onRead(Filter.java:113) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.SslFilter.handleRead(SslFilter.java:402) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.SslFilter.processRead(SslFilter.java:365) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.Filter.onRead(Filter.java:111) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.Filter.onRead(Filter.java:113) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.TransportFilter$4.completed(TransportFilter.java:295) Â Â Â Â at io.jenkins.cli.shaded.org.glassfish.tyrus.container.jdk.client.TransportFilter$4.completed(TransportFilter.java:279) Â Â Â Â at java.base/sun.nio.ch.Invoker.invokeUnchecked(Invoker.java:129) Â Â Â Â at java.base/sun.nio.ch.Invoker$2.run(Invoker.java:221) Â Â Â Â at java.base/sun.nio.ch.AsynchronousChannelGroupImpl$1.run(AsynchronousChannelGroupImpl.java:113) Â Â Â Â at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1136) Â Â Â Â at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:635) Â Â Â Â at java.base/java.lang.Thread.run(Thread.java:833)
Server log:
Â
Â
2024-01-29 10:05:29.153+0000 [id=6480]  WARNING  hudson.security.csrf.CrumbFilter#doFilter: Found invalid crumb d869e825dbe6862e7a4e852110e14ce87459c8e3be40c420a1211f196045cb0b. If you are calling this URL with a script, please use the API Token instead. More information: https://www.jenkins.io/redirect/crumb-cannot-be-used-for-script 2024-01-29 10:05:29.153+0000 [id=6480]  WARNING  hudson.security.csrf.CrumbFilter#doFilter: No valid crumb was included in request for /widget/ExecutorsWidget/ajax by r.hoehener. Returning 403.
Â
