I am using:
· Jenkins 1.580.2
· GIT client plugin 1.15.0
· GIT plugin 2.3.4
· Workflow plugins 1.1
· Credentials plugin 1.22
We use GitLab for source control and do not allow anonymous access of any kind. We use the Credentials plugin, have put in credentials allowing us access to Git, and on our normal projects, we simply give Git these pre-loaded credentials. Now, I’m trying to create a Workflow job.
I can’t find any doc which says how to feed credentials to Git, so I went to the credentials plugin and pulled the plugin ID from the URL. I then wrote the following Groovy CPS DSL script (without the redactions, obviously):
steps.stage('Setup')
node('mock_builder') {
String templateUrl = 'git@URL_REDACTED'
steps.git(url: templateUrl, credentialsId: 'ID_REDACTED')
sh 'echo hello world'
}
The job gets stuck in the SCM step and exits with the following output:
Running: Setup
Entering stage Setup
Proceeding
Running: Allocate node : Start
Running on mock_builder in C:\Windows\TEMP\hudson1572436821107746068tmp\workspace\Try a Workflow
Running: Allocate node : Body : Start
Running: Git
> git.exe rev-parse --is-inside-work-tree # timeout=10
Fetching changes from the remote Git repository
> git.exe config remote.origin.url git@URL_REDACTED # timeout=10
Fetching upstream changes from git@URL_REDACTED
> git.exe --version # timeout=10
> git.exe -c core.askpass=true fetch --tags --progress git@URL_REDACTED +refs/heads/*:refs/remotes/origin/*
ERROR: Timeout after 10 minutes
ERROR: Error fetching remote repo 'origin'
Running: Allocate node : Body : End
Running: Allocate node : End
Running: End of Workflow
ERROR: Error fetching remote repo 'origin'
Finished: FAILURE
I’m wondering where the “-c core.askpass=true” came from, and figuring that it was waiting to receive a password via standard input.
Is there any way, with or without the credentials plugin, to feed Git credentials to this project?
Thanks in advance,
--Rob
Thanks in advance,
--Rob
This e-mail and the information, including any attachments it contains, are intended to be a confidential communication only to the person or entity to whom it is addressed and may contain information that is privileged. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this communication in error, please immediately notify the sender and destroy the original message.
Thank you.
Please consider the environment before printing this email.
--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-use...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/0A40042D85E7C84DB443060EC44B3FD36D9ACEDA91%40dekaexchange07.deka.local.
For more options, visit https://groups.google.com/d/optout.
Dear user of the git plugin,
Is this option causing some misbehavior in your environment?
Could you please describe it?
Or, yours is rather a conservative attitude towards changes which could deteriorate your build environment?
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/29112111-e2f5-4d62-b916-011e72dbfae2%40googlegroups.com.
I will try to justify a little more the existence of the -c core.askpass=true option.
This is essentially a "a la volée" modification of the .gitconfig content.
This option says to git to use /bin/true (which always returns 1) as identity manager in the case where the remote server asks an explicit authentication. Or, in the case the provided identification isn't sufficient for the remote server needs.
(Even more detailed and precise documentation can be found on http://git-scm.com/docs/git-config)
In versions before the 1.14, the git client plugin was using an explicit http connection to test the provided credentials.
Such approach was limited, when compared to the libraries used by git itself. These libraries are able to use several authentication schemas, which weren't supported by the git-client plugin.
I hope that these details satisfy your needs. I hope to get more details about the misbehaviors that this option is causing to you.
Thanks in advance,
Ivo
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-users+unsubscribe@googlegroups.com.
Setting http proxy: server:8080using .gitcredentials to set credentials > /usr/local/git_1.8.4.4/bin/git config --local credential.helper store --file=/tmp/git7741299244057538477.credentials # timeout=10
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/c461ac80-a0ef-436c-94c9-906f13fc1b4f%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/3f8c619c-a7ba-4f50-8e2f-51b201673caf%40googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/9b738b5c-14f9-487f-9fa6-1cea4e1bf2b6%40googlegroups.com.