Closed KalleOlaviNiemitalo closed 2 years ago
Matrix auth 3.0 and role strategy are not compatible currently, likely nothing to do in this plugin I’ll add a warning to release notes when I’m back to computer
Thank you for confirming.
I should file an issue on Role-based Authorization Strategy, then. The previously filed issues don't seem to cover this incompatibility:
There’s been a couple of issues raised against matrix auth (and closed since) and on places like community.Jenkins.io I believe but yes if there’s no open issue then please do
JENKINS-67387 on matrix-auth-plugin seems pretty close, but it also says that adding USER:
fixed the problem, which doesn't match what I experienced.
Filed JENKINS-67422 on role-strategy-plugin, and https://github.com/jenkins-infra/jenkins.io/issues/4778 on the manual plugin installation instructions.
Version report
Jenkins and plugins versions report:
Reproduction steps
The Configuration as Code
jenkins.yaml
file included:jenkins.yaml
also defined a few more global roles and item roles, but those should only be able to grant more permissions rather than remove any, so they don't seem relevant to this issue.Before the upgrade, I was able to log in as REDACTED@REDACTED.com and get administrator access to Jenkins.
I then upgraded Jenkins plugins:
restarted Jenkins, and logged in.
Results
Expected result:
Should still have been able to log in and have administrator access to Jenkins.
Actual result:
I was able to log in again but no longer had administrator access.
I edited
jenkins.yaml
, added the "USER:" prefix to the email address, and restarted Jenkins again. I was still able to log in but did not have administrator access.I downloaded the previous versions of azure-ad.hpi and matrix-auth.hpi from https://plugins.jenkins.io/, copied them to JENKINS_HOME/plugins as described in https://www.jenkins.io/doc/book/managing/plugins/#on-the-controller and restarted Jenkins. I was able to log in and got administrator access again.