Bartlett fails to authenticate if CSRF protection is _not_ enabled

Nike-Inc / bartlett

A simple Jenkins command line client to serve your needs.

Other

81 stars 6 forks source link

Bartlett fails to authenticate if CSRF protection is _not_ enabled #37

Closed dogonthehorizon closed 7 years ago

dogonthehorizon commented 7 years ago

Bartlett fails to omit the CSRF crumb header if it is not enabled on the target Jenkins server. This means that any authenticated action will fail with a mysterious 400 BAD REQUEST error.