[JIRA] (JENKINS-61476) Can't stay logged in with latest versions.

17 views
Skip to first unread message

ghs1@3ds.com (JIRA)

unread,
Mar 13, 2020, 12:10:02 PM3/13/20
to jenkinsc...@googlegroups.com
g hs1 created an issue
 
Jenkins / Bug JENKINS-61476
Can't stay logged in with latest versions.
Issue Type: Bug Bug
Assignee: Unassigned
Components: core
Created: 2020-03-13 16:09
Environment: RHEL7
Jenkins 2.224, 2.225
Priority: Major Major
Reporter: g hs1

Jenkins has become basically unusable for us since updating to 224 two days ago. I also tried 225 today with no change.

We now can't stay logged into the UI for any length of time. 9 times out of 10 we are either logged out again once the page has refreshed or the first page change will result in being logged out. On occasion we can manage to navigate a couple of times and are then logged out. We were previously using 217 pending a fix for the swarm plugin issue and that was fine, as have been all prior versions. There has been no change on the host server. We are and always have been using LDAP on this Jenkins instance. That has always worked fine, too.

I did try turning off the new UI via the system jenkins.ui.refresh property but didn't know if that was still valid and could find no help as to how to do it correctly, so may have got it wrong.

In a possibly related issue, the drop-down menus on links, which have always been slow and somewhat unreliable, are now useless as they almost always refuse to display. That also makes nav painful.

The only other factor I can offer is that I cleared out all local browser storage after upgrading, seeing this issue and poking around for a while and that seemed to help a little i.e. I could stay logged in for longer before being kicked out again but trying that again today hasn't helped.

Let me know if I can supply any more info. If I can't get this fixed quickly I will try rolling back but I can't go beyond 221 as the swarm issue will break our builds.

Thanks.
Add Comment Add Comment
 
This message was sent by Atlassian Jira (v7.13.12#713012-sha1:6e07c38)
Atlassian logo

ghs1@3ds.com (JIRA)

unread,
Mar 13, 2020, 12:11:04 PM3/13/20
to jenkinsc...@googlegroups.com
g hs1 commented on Bug JENKINS-61476
 
Re: Can't stay logged in with latest versions.

One more thing. Of course 'keep me logged in' is always selected.

dbeck@cloudbees.com (JIRA)

unread,
Mar 13, 2020, 12:58:02 PM3/13/20
to jenkinsc...@googlegroups.com

In a possibly related issue, the drop-down menus on links, which have always been slow and somewhat unreliable, are now useless as they almost always refuse to display. That also makes nav painful.

Yep, your session will have expired by then, then the menu cannot load.

Anything interesting in the Jenkins log?

Which is the latest known good version wrt being logged in? 2.221? Which is the first known bad one? 2.224?

the swarm issue

What issue is that?

dbeck@cloudbees.com (JIRA)

unread,
Mar 13, 2020, 1:10:04 PM3/13/20
to jenkinsc...@googlegroups.com

Between the last known good, and first broken release, do you change plugin versions too? Or is the Jenkins (core) version the only thing that's changed to break/repair it?

ghs1@3ds.com (JIRA)

unread,
Mar 16, 2020, 5:46:02 AM3/16/20
to jenkinsc...@googlegroups.com
g hs1 commented on Bug JENKINS-61476

What issue is that?

 JENKINS-61029

Yep, your session will have expired by then, then the menu cannot load.

Nope, I'm referring to when logged in, as well. Further, menus must be able to load regardless of session since users can be allowed to perform actions without logging in.

Which is the latest known good version wrt being logged in? 2.221? Which is the first known bad one? 2.224?

217, as mentioned. 224, as also mentioned. I haven't tried anything in between, yet.

Between the last known good, and first broken release, do you change plugin versions too? Or is the Jenkins (core) version the only thing that's changed to break/repair it?

I updated the swarm plugin, which went from 217 to 218 due to the aforementioned critical issue. I can't remember if there were other updates. It's possible there were a couple but it wasn't a long list if so. They'd been updated fairly recently.

Thanks.

dbeck@cloudbees.com (JIRA)

unread,
Mar 16, 2020, 6:07:04 AM3/16/20
to jenkinsc...@googlegroups.com

Further, menus must be able to load regardless of session since users can be allowed to perform actions without logging in.

Menus are loaded using POST requests, and if your sessions expired in the mean time, the CSRF protection will reject requests with a CSRF crumb that doesn't match the session.

And since you keep getting logged out, I would guess that happens even without you noticing immediately, and the only visible result is that menus don't open. The browser console will bring certainty, HTTP 403 would be expected for POST requests if the session is expired.

 I can't remember if there were other updates. It's possible there were a couple but it wasn't a long list if so. They'd been updated fairly recently.

To clarify, is the following correct:

  • You updated Jenkins from 2.217 to 2.224, and some plugins. It broke.
  • You downgraded Jenkins from 2.224 to 2.217. It works again.

Or is it rather

  • You updated Jenkins from 2.217 to 2.224, and some plugins. It broke.
  • You downgraded Jenkins from 2.224 to 2.217 and reverted the plugin updates. It works again.

I can't go beyond 221 as the swarm issue will break our builds.

Another thing confusing me. Swarm Plugin should break in 2.220 (not 2.221), and be fixed through an update to 3.18, which should work for any version of Jenkins. Do you use the auto-discovery feature that was removed?

 

As general information, anything interesting in the Jenkins log?

ghs1@3ds.com (JIRA)

unread,
Mar 16, 2020, 6:30:03 AM3/16/20
to jenkinsc...@googlegroups.com
g hs1 commented on Bug JENKINS-61476

We seem to be speaking different languages here, somehow. I don't know why this isn't clear...

 {quote}To clarify, is the following correct:{quote}

Neither. I went 217 -> 224 -> 225. At least the swarm plugin was updated on the way to 224. I said I'd revert if a fix wasn't found and, that being the case, I can't revert further than 221 because of Jenkins-61029. I haven't reverted anything yet. If we can't find a solution quickly I'll have to because things are currently painful.

 

As general information, anything interesting in the Jenkins log?{quote}

 Today I found this, which may be relevant except that no-one was around yesterday to try and login, as far as I know, so it's a little odd in that respect. I don't know what these reports refer to, as yet.

Mar 15, 2020 5:48:01 PM WARNING jenkins.security.stapler.StaplerFilteredActionListener onGetterTrigger
New Stapler routing rules result in the URL "/authentication/login/" no longer being allowed. If you consider it safe to use, add the following to the whitelist: "staticMethod jenkins.model.Jenkins getAuthentication". Learn more: https://jenkins.io/redirect/stapler-routing

Mar 15, 2020 5:48:28 PM WARNING jenkins.security.stapler.StaplerFilteredActionListener onGetterTrigger
New Stapler routing rules result in the URL "/version" no longer being allowed. If you consider it safe to use, add the following to the whitelist: "staticMethod jenkins.model.Jenkins getVersion". Learn more: https://jenkins.io/redirect/stapler-routing

Mar 15, 2020 5:48:37 PM WARNING hudson.init.impl.InstallUncaughtExceptionHandler handleException
Caught unhandled exception with ID d8fa20da-b17a-4988-8a26-81718dd12060 java.lang.IllegalArgumentException: /..\pixfir~1\how_to_login.html at org.kohsuke.stapler.TokenList.<init>(TokenList.java:66) at org.kohsuke.stapler.Stapler.invoke(Stapler.java:667) at org.kohsuke.stapler.Stapler.service(Stapler.java:238) at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:755) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1617) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154) at org.jenkinsci.plugins.ssegateway.Endpoint$SSEListenChannelFilter.doFilter(Endpoint.java:246) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at jenkins.security.ResourceDomainFilter.doFilter(ResourceDomainFilter.java:76) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at io.jenkins.blueocean.ResourceCacheControl.doFilter(ResourceCacheControl.java:134) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at io.jenkins.blueocean.auth.jwt.impl.JwtAuthenticationFilter.doFilter(JwtAuthenticationFilter.java:61) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:105) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84) at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:122) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:135) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249) at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90) at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:545) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:566) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1610) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1300) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:485) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1580) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1215) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.Server.handle(Server.java:500) at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:383) at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:547) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:375) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:273) at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:336) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:313) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:171) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:129) at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:375) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:806) at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:938) at java.lang.Thread.run(Thread.java:748)

ghs1@3ds.com (JIRA)

unread,
Mar 16, 2020, 6:31:03 AM3/16/20
to jenkinsc...@googlegroups.com
g hs1 edited a comment on Bug JENKINS-61476
We seem to be speaking different languages here, somehow. I don't know why this isn't clear...

 \{quote}To clarify, is the following correct:\{quote}

Neither. I went 217 -> 224 -> 225. At least the swarm plugin was updated on the way to 224. I said I'd revert if a fix wasn't found and, that being the case, I can't revert further than 221 because of Jenkins-61029. I haven't reverted anything yet. If we can't find a solution quickly I'll have to because things are currently painful.

 

As general information, anything interesting in the Jenkins log?\{quote}

 Today I found this, which may be relevant except that no-one was around yesterday to try and login, as far as I know, so it's a little odd in that respect. I don't know what these reports refer to, as yet.
{code:java}

Mar 15, 2020 5:48:01 PM WARNING jenkins.security.stapler.StaplerFilteredActionListener onGetterTrigger
New Stapler routing rules result in the URL "/authentication/login/" no longer being allowed. If you consider it safe to use, add the following to the whitelist: "staticMethod jenkins.model.Jenkins getAuthentication". Learn more: https://jenkins.io/redirect/stapler-routing

Mar 15, 2020 5:48:28 PM WARNING jenkins.security.stapler.StaplerFilteredActionListener onGetterTrigger
New Stapler routing rules result in the URL "/version" no longer being allowed. If you consider it safe to use, add the following to the whitelist: "staticMethod jenkins.model.Jenkins getVersion". Learn more: https://jenkins.io/redirect/stapler-routing

Mar 15, 2020 5:48:37 PM WARNING hudson.init.impl.InstallUncaughtExceptionHandler handleException
Caught unhandled exception with ID d8fa20da-b17a-4988-8a26-81718dd12060 java.lang.IllegalArgumentException: /..\pixfir~1\how_to_login.html at org.kohsuke.stapler.TokenList.<init>(TokenList.java:66) at org.kohsuke.stapler.Stapler.invoke(Stapler.java:667) at org.kohsuke.stapler.Stapler.service(Stapler.java:238) at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) at org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:755) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1617) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:154) at org.jenkinsci.plugins.ssegateway.Endpoint$SSEListenChannelFilter.doFilter(Endpoint.java:246) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at jenkins.security.ResourceDomainFilter.doFilter(ResourceDomainFilter.java:76) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at io.jenkins.blueocean.ResourceCacheControl.doFilter(ResourceCacheControl.java:134) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at io.jenkins.blueocean.auth.jwt.impl.JwtAuthenticationFilter.doFilter(JwtAuthenticationFilter.java:61) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at jenkins.telemetry.impl.UserLanguages$AcceptLanguageFilter.doFilter(UserLanguages.java:128) at hudson.util.PluginServletFilter$1.doFilter(PluginServletFilter.java:151) at hudson.util.PluginServletFilter.doFilter(PluginServletFilter.java:157) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at hudson.security.csrf.CrumbFilter.doFilter(CrumbFilter.java:105) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:84) at hudson.security.UnwrapSecurityExceptionFilter.doFilter(UnwrapSecurityExceptionFilter.java:51) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at jenkins.security.ExceptionTranslationFilter.doFilter(ExceptionTranslationFilter.java:122) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.providers.anonymous.AnonymousProcessingFilter.doFilter(AnonymousProcessingFilter.java:125) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.ui.rememberme.RememberMeProcessingFilter.doFilter(RememberMeProcessingFilter.java:135) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.ui.AbstractProcessingFilter.doFilter(AbstractProcessingFilter.java:271) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at jenkins.security.BasicHeaderProcessor.doFilter(BasicHeaderProcessor.java:93) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at org.acegisecurity.context.HttpSessionContextIntegrationFilter.doFilter(HttpSessionContextIntegrationFilter.java:249) at hudson.security.HttpSessionContextIntegrationFilter2.doFilter(HttpSessionContextIntegrationFilter2.java:67) at hudson.security.ChainedServletFilter$1.doFilter(ChainedServletFilter.java:87) at hudson.security.ChainedServletFilter.doFilter(ChainedServletFilter.java:90) at hudson.security.HudsonFilter.doFilter(HudsonFilter.java:171) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.kohsuke.stapler.compression.CompressionFilter.doFilter(CompressionFilter.java:49) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at hudson.util.CharacterEncodingFilter.doFilter(CharacterEncodingFilter.java:82) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.kohsuke.stapler.DiagnosticThreadNameFilter.doFilter(DiagnosticThreadNameFilter.java:30) at org.eclipse.jetty.servlet.ServletHandler$CachedChain.doFilter(ServletHandler.java:1604) at org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:545) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143) at org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:566) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235) at org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1610) at org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233) at org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1300) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188) at org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:485) at org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1580) at org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186) at org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1215) at org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141) at org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127) at org.eclipse.jetty.server.Server.handle(Server.java:500) at org.eclipse.jetty.server.HttpChannel.lambda$handle$1(HttpChannel.java:383) at org.eclipse.jetty.server.HttpChannel.dispatch(HttpChannel.java:547) at org.eclipse.jetty.server.HttpChannel.handle(HttpChannel.java:375) at org.eclipse.jetty.server.HttpConnection.onFillable(HttpConnection.java:273) at org.eclipse.jetty.io.AbstractConnection$ReadCallback.succeeded(AbstractConnection.java:311) at org.eclipse.jetty.io.FillInterest.fillable(FillInterest.java:103) at org.eclipse.jetty.io.ChannelEndPoint$2.run(ChannelEndPoint.java:117) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.runTask(EatWhatYouKill.java:336) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.doProduce(EatWhatYouKill.java:313) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.tryProduce(EatWhatYouKill.java:171) at org.eclipse.jetty.util.thread.strategy.EatWhatYouKill.run(EatWhatYouKill.java:129) at org.eclipse.jetty.util.thread.ReservedThreadExecutor$ReservedThread.run(ReservedThreadExecutor.java:375) at org.eclipse.jetty.util.thread.QueuedThreadPool.runJob(QueuedThreadPool.java:806) at org.eclipse.jetty.util.thread.QueuedThreadPool$Runner.run(QueuedThreadPool.java:938) at java.lang.Thread.run(Thread.java:748)
{code}
There is no mention of the numerous logouts from today, though, so it may be unrelated.

dbeck@cloudbees.com (JIRA)

unread,
Mar 16, 2020, 6:47:02 AM3/16/20
to jenkinsc...@googlegroups.com

Those log messages look like your Jenkins is on an untrusted network and getting scanned/attacked using generic scripts. Doesn't seem related.

I can't revert further than 221 because of Jenkins-61029

The updated Swarm Plugin should work with any version of Jenkins of the past two years, and the linked problem only occurs when using an older version of Swarm Plugin and Jenkins 2.220 or newer. So this should not affect your choice of core release at all unless you insist on a plugin downgrade.

 

What security realm are you using? E.g. Active Directory, LDAP, Jenkins local user database, …?

ghs1@3ds.com (JIRA)

unread,
Mar 16, 2020, 6:53:02 AM3/16/20
to jenkinsc...@googlegroups.com
g hs1 commented on Bug JENKINS-61476

OK, I didn't expect the latest plugin to work with versions of core prior to 220 because of the change that occurred in 220 and broke the plugin. Are you sure that that's the case?

We are and always have been using LDAP

Please read before asking.

ghs1@3ds.com (JIRA)

unread,
Mar 16, 2020, 12:17:03 PM3/16/20
to jenkinsc...@googlegroups.com
g hs1 commented on Bug JENKINS-61476

Some further info...

All of the above is true of Firefox 73, I think. I restarted and upgraded to 74.0 but nothing has changed there. I also tried Chrome and the problem is not happening there, so far. I have not used Chrome to manage this server before so there would be no cached data, etc.

I have been using Jenkins logged out and with 'anyone can do anything' set over the last few hours, to avoid having to log in. It still doesn't work properly in FF at all. Menus don't work and the inability to remain logged in remains. When I view a running job's console it displays and then aborts with

HTTP ERROR 403 No valid crumb was included in the request

URI:	/view/JobDSL%20Pipeline%20Test/job/xxxxxxxxxxxxxxxxx/140/logText/progressiveHtml

STATUS:	403

MESSAGE:	No valid crumb was included in the request

SERVLET:	Stapler

Powered by Jetty:// 9.4.27.v20200227

Refreshing the page causes the new console data to display and then this message re-appears.

I have now tried reverting to 2.223 and 2.222. Neither of them work at all, reporting

hudson.util.HudsonFailedToLoad: org.jvnet.hudson.reactor.ReactorException: java.io.IOException: Unable to read /opt/jenkins/config.xml
	at hudson.WebAppMain$3.run(WebAppMain.java:244)
...

when the UI tries to display, so it looks like the recent UI changes or something else have made the config incompatible. I verified this in Chrome, as well.

I am now back on 225 and using Chrome for the moment as that has at least provided some relief from the problem in FF.

 

ghs1@3ds.com (JIRA)

unread,
Mar 23, 2020, 11:28:02 AM3/23/20
to jenkinsc...@googlegroups.com
g hs1 commented on Bug JENKINS-61476

I upgraded to 227 with no improvement. Chrome is still working fine but it would be nice to understand what's going on with FF.
Reply all
Reply to author
Forward
0 new messages