Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-74887

java.lang.IllegalStateException: This credential is no longer valid after updating to Jenkins 2.479.1

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Minor Minor
    • kerberos-sso-plugin
    • None

      After updating Jenkins to version 2.479.1 this plugin is "completely" broken. Before we were on 2.462.1 and everything was working great for us (for many years).

      Given there are many musts in the Jenkins upgrade notes (https://www.jenkins.io/doc/upgrade-guide/2.479/) for plugins like Reverse Proxy Auth and Windows Negotiate SSO plugin I assume this issue has something to do with the new Spring Security 6, Spring Framework 6, and/or Jakarta EE 9.

       

      The relevant stack trace is as follows:

      2024-11-20T13:16:05.146316+01:00 jenkins-server jenkins[579241]: 2024-11-20 12:16:05.144+0000 [id=69]#011WARNING#011h.i.i.InstallUncaughtExceptionHandler#handleException: Caught unhandled exception with ID d98bde09-4e3b-4e52-9135-d08a9bd43e27
2024-11-20T13:16:05.146474+01:00 jenkins-server jenkins[579241]: java.lang.IllegalStateException: This credential is no longer valid
2024-11-20T13:16:05.146506+01:00 jenkins-server jenkins[579241]: #011at java.security.jgss/sun.security.jgss.GSSCredentialImpl.toString(GSSCredentialImpl.java:646)
2024-11-20T13:16:05.146530+01:00 jenkins-server jenkins[579241]: #011at java.base/java.lang.String.valueOf(String.java:4220)
2024-11-20T13:16:05.146581+01:00 jenkins-server jenkins[579241]: #011at java.base/java.lang.StringBuilder.append(StringBuilder.java:173)
2024-11-20T13:16:05.146606+01:00 jenkins-server jenkins[579241]: #011at PluginClassLoader for kerberos-sso//org.codelibs.spnego.SpnegoAuthenticator.lambda$doSpnegoAuth$19(SpnegoAuthenticator.java:490)
2024-11-20T13:16:05.146629+01:00 jenkins-server jenkins[579241]: #011at java.logging/java.util.logging.Logger.log(Logger.java:1051)
2024-11-20T13:16:05.146653+01:00 jenkins-server jenkins[579241]: #011at java.logging/java.util.logging.Logger.fine(Logger.java:1945)
2024-11-20T13:16:05.146678+01:00 jenkins-server jenkins[579241]: #011at PluginClassLoader for kerberos-sso//org.codelibs.spnego.SpnegoAuthenticator.doSpnegoAuth(SpnegoAuthenticator.java:490)
2024-11-20T13:16:05.146729+01:00 jenkins-server jenkins[579241]: #011at PluginClassLoader for kerberos-sso//org.codelibs.spnego.SpnegoAuthenticator.authenticate(SpnegoAuthenticator.java:329)
2024-11-20T13:16:05.146752+01:00 jenkins-server jenkins[579241]: #011at PluginClassLoader for kerberos-sso//com.sonymobile.jenkins.plugins.kerberossso.ioc.SpnegoKerberosAuthenticationFactory$SpnegoKerberosAuthenticator.authenticate(SpnegoKerberosAuthenticationFactory.java:90)
2024-11-20T13:16:05.146775+01:00 jenkins-server jenkins[579241]: #011at PluginClassLoader for kerberos-sso//com.sonymobile.jenkins.plugins.kerberossso.KerberosSSOFilter.doFilter(KerberosSSOFilter.java:187)

      Every time a user access Jenkins the This credential is no longer valid exception is thrown.

       

      To reproduce simply setup 2.479.1 and install Active Directory + Kerberos SSO plugin.

            t_westling Tomas Westling
            glorang Geert Lorang
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated: