Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Critical
    • Resolution: Fixed
    • Component/s: role-strategy-plugin
    • Labels:
      None
    • Environment:
      Jenkins 2.73.2
      Role-based Authorization Strategy 2.6.1 (also tested with 2.8.1)
    • Similar Issues:

      Description

      Hey,

      it looks like we have hit some kind of limit for item roles with this plugin. I wanted to add 4 new item roles under "Assign roles" and got the error from the screenshot.
      I was able to add 3 item roles seperately, but when adding the fourth one I get the same error again. If I delete one existing item role, I am able to add a different one instead. But after that I can't add anymore item roles without getting an error message.
      We have 238 item roles at the moment.
      I updated the plugin to its current release (2.8.1) but unfortunately it didn't help.

      Kind regards,
      Robin Zergiebel

        Attachments

          Activity

          Hide
          oleg_nenashev Oleg Nenashev added a comment -

          Likely the form is too large. See JENKINS-30062 and other similar issues.
          To confirm that, it would be great to have system logs

          Show
          oleg_nenashev Oleg Nenashev added a comment - Likely the form is too large. See JENKINS-30062 and other similar issues. To confirm that, it would be great to have system logs
          Hide
          robco Robin Zergiebel added a comment - - edited

          Which log are you interested in? I found the following error in our tomcat8-stderr.log:

          07-Jun-2018 16:03:53.967 WARNING [Handling POST /jenkins/role-strategy/assignSubmit from <ip> : http-apr-8080-exec-7] hudson.security.csrf.CrumbFilter.doFilter No valid crumb was included in request for /jenkins/role-strategy/assignSubmit. Returning 403.

          Show
          robco Robin Zergiebel added a comment - - edited Which log are you interested in? I found the following error in our tomcat8-stderr.log: 07-Jun-2018 16:03:53.967 WARNING [Handling POST /jenkins/role-strategy/assignSubmit from <ip> : http-apr-8080-exec-7] hudson.security.csrf.CrumbFilter.doFilter No valid crumb was included in request for /jenkins/role-strategy/assignSubmit. Returning 403.
          Hide
          robco Robin Zergiebel added a comment -

          Hey Oleg Nenashev,

          even though we are using a Tomcat and not a Jetty container your link was really helpful.

          I was able to fix the issue by adding

          maxPostSize="6291456"
          

          in the connector section of our server.xml.

          I am closing the issue now.

          Kind regards,

          Robin

          Show
          robco Robin Zergiebel added a comment - Hey Oleg Nenashev , even though we are using a Tomcat and not a Jetty container your link was really helpful. I was able to fix the issue by adding maxPostSize= "6291456" in the connector section of our server.xml. I am closing the issue now. Kind regards, Robin
          Hide
          robco Robin Zergiebel added a comment -

          Added

          maxPostSize="6291456"
          

          in connector section of server.xml.

          Show
          robco Robin Zergiebel added a comment - Added maxPostSize= "6291456" in connector section of server.xml.
          Hide
          robco Robin Zergiebel added a comment -

          Fixed.

          Show
          robco Robin Zergiebel added a comment - Fixed.
          Hide
          oleg_nenashev Oleg Nenashev added a comment -

          happy to help.
          Generally I would recommend to consider things like https://github.com/jenkinsci/ownership-plugin/blob/master/doc/OwnershipBasedSecurity.md so that you can minimize number of roles.

          Show
          oleg_nenashev Oleg Nenashev added a comment - happy to help. Generally I would recommend to consider things like https://github.com/jenkinsci/ownership-plugin/blob/master/doc/OwnershipBasedSecurity.md so that you can minimize number of roles.
          Hide
          robco Robin Zergiebel added a comment -

          Will definitely take a look at that.

          Thank you very much for your help!

          Show
          robco Robin Zergiebel added a comment - Will definitely take a look at that. Thank you very much for your help!

            People

            • Assignee:
              robco Robin Zergiebel
              Reporter:
              robco Robin Zergiebel
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: