Issue with Configure Global Security , Active Directory , Google chrome username autofill .

Taher Furniturewala

unread,

Jul 7, 2015, 7:55:31 PM7/7/15

to jenkins...@googlegroups.com

We use active directory plugin for allowing users to login to Jenkins ( run on a CentOS box )

The issue we had was that once whilst trying to make some change in ‘Configure Global Security’ and after saving it , no user was able to login using their AD credentials .

This happened because Chromes autofill , added the username as the ‘bindName’ in the Advanced fields for ‘Active Directory’ .

This was very disruptive and serious , but happened very silently as normally the ‘Advanced fields’ are not expanded and seen for this to be noticed .

The fix of this was to manually remove the <bindName> entry from the config.xml and restart the Jenkins instance .

This email is as FYI and in case others have seen this too . Will probably file an issue in Jenkins for this .

Taher .

This email and any attachments may contain confidential and privileged material for the sole use of the intended recipient. Any review, copying, or distribution of this email (or any attachments) by others is prohibited. If you are not the intended recipient, please contact the sender immediately and permanently delete this email and any attachments. No employee or agent of TiVo Inc. is authorized to conclude any binding agreement on behalf of TiVo Inc. by email. Binding agreements with TiVo Inc. may only be made by a signed written agreement.

Slide

unread,

Jul 7, 2015, 8:01:55 PM7/7/15

to jenkins...@googlegroups.com

Maybe more fields should be marked with autocomplete="off"

--
You received this message because you are subscribed to the Google Groups "Jenkins Users" group.
To unsubscribe from this group and stop receiving emails from it, send an email to jenkinsci-use...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/712CB46A62E6AA4EA165C01FEC43CD7A085AC065%40SJEXMB02.Tivo.com.
For more options, visit https://groups.google.com/d/optout.

Taher Furniturewala

unread,

Jul 7, 2015, 8:09:12 PM7/7/15

to jenkins...@googlegroups.com

Is this a setting to be done in Jenkins by me or a change in the code of core Jenkins or the Active Directory plugin ?

To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/CAPiUgVed4np%2B_1PDK-hf1HqJ3Yght2gir8KMSAq2Rsc4xjDN-Q%40mail.gmail.com.

For more options, visit https://groups.google.com/d/optout.

Slide

unread,

Jul 7, 2015, 8:51:22 PM7/7/15

to jenkins...@googlegroups.com

In Jenkins code (and possibly the plugin)

To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/712CB46A62E6AA4EA165C01FEC43CD7A085AC0BF%40SJEXMB02.Tivo.com.

Taher Furniturewala

unread,

Jul 7, 2015, 9:09:27 PM7/7/15

to jenkins...@googlegroups.com

Thanks . Created Jira issue with Jenkins for the same . https://issues.jenkins-ci.org/browse/JENKINS-29280

To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-users/CAPiUgVc5hYg9bjrv7i5winsRi3WNd5Qwz-XJ2XVJRFTNmcti-w%40mail.gmail.com.

For more options, visit https://groups.google.com/d/optout.

Reply all

Reply to author

Forward