-
Improvement
-
Resolution: Unresolved
-
Minor
-
None
Everyone,
I have recently installed Jenkins SAML plugin to log into Jenkins using ADFS. We
can successfully login with our ADFS users and have our permissions managed using
Project Matrix. However, we do use a local service admin to perform administrative
tasks such updates hitting the cli endpoint as: http://localhost:8080/cli
Whenever we trigger a rest/cli action via curl -vL --user admin: PASSWORD_REDACTED http://localhost:8080/cli
We get
<title>Error 401 Invalid password/token for user: admin</title>
</head>
<body><h2>HTTP ERROR 401 Invalid password/token for user: admin</h2>
<table>
I clearly understand that this is the result of SAML plugin overriding the auth in favour of SAML
discarding the use of local service users. From my research over the net, I'm not the first
experiencing this issue. I'm aware of https://github.com/wenjunxiao/mixing-security-realm-plugin
but this is not an official and vetted Jenkins plugin and therefore is out of the table.
Is there anything down the line planned in Jenkins Core to overcome this scenario?
Best,
Phillip