Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-33183

Anonymous scan credentials causes checkout to fail

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Labels:
      None
    • Environment:
      Jenkins 1.625.3, GitHub Branch Source Plugin 1.2, GitHub Enterprise
    • Similar Issues:

      Description

      I am getting an error when I have my credentials set to none or anonymous. The branch indexing works properly and automatically finds new PR's when they are created, but the builds themselves fail because the checkout command doesn't seem to be willing to run without specific credentials.

      No scan credentials, skipping
      ERROR: Could not determine exact tip revision of PR-5; falling back to nondeterministic checkout
       > C:\Program Files\Git\bin\git.exe rev-parse --is-inside-work-tree # timeout=10
      Fetching changes from 2 remote Git repositories
       > C:\Program Files\Git\bin\git.exe config remote.origin.url https://<github enterprise server>/<org>/<project>.git # timeout=10
      Fetching upstream changes from https://<github enterprise server>/<org>/<project>.git
       > C:\Program Files\Git\bin\git.exe --version # timeout=10
       > C:\Program Files\Git\bin\git.exe -c core.askpass=true fetch --tags --progress https://<github enterprise server>/<org>/<project>.git +refs/heads/*:refs/remotes/origin/*
       > C:\Program Files\Git\bin\git.exe config remote.origin1.url https://<github enterprise server>/<org>/<project>.git # timeout=10
      Fetching upstream changes from https://<github enterprise server>/<org>/<project>.git
       > C:\Program Files\Git\bin\git.exe -c core.askpass=true fetch --tags --progress https://<github enterprise server>/<org>/<project>.git +refs/pull/*/merge:refs/remotes/origin/pr/*
      Seen branch in repository origin/master
      Seen branch in repository origin/pr/1
      Seen branch in repository origin/pr/2
      Seen branch in repository origin/pr/5
      Seen 4 remote branches
      ERROR: Couldn't find any revision to build. Verify the repository and branch configuration for this job.
      Finished: FAILURE
      

      Based on reading some other issues, it appears to me that anonymous access was intentionally left unusable due to concerns with API rate limiting. There also appeared to be a comment that the rate limiting doesn't apply to a Github Enterprise Server, which is what I'm using here. I understand discouraging people from using anonymous access, but right now it appears to work correctly for indexing and then break during checkout. Can similar logic to what happens during indexing be added to the checkout to allow anonymous to get the revision to checkout?

      From reading the code it appears that the function retrieve(SCMHead, TaskListener) needs to have functionality closer to that of retrieve(SCMHeadObserver, TaskListener) Also, should retrieve(SCMHead, TaskListener) be using the checkout credentials instead of the scan credentials? Either way, I think it should allow anonymous credentials to be used.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                andne Andy Neebel
                Reporter:
                andne Andy Neebel
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: