Closed Starefossen closed 2 years ago
I can confirm this behaviour. It started after recently upgrading other plugins on our Jenkins instances (using LTS).
+1 got same issue
Can you check if for some reason you have an error in your Jenkins logs like this:
Error while serving http://localhost:8080/prometheus
hudson.security.AccessDeniedException3: <user> is missing the Plugin Usage View/PluginView permission
If it is the case, this could be related with an upgrade of plugin-usage-plugin that introduces a new permission role that breaks some stuff. We solve this temporarily by granting the Plugin Usage View/PluginView permission to the needed users.
cc: @Starefossen @olafrauch @mBouamama
I@rfvmonteiro spot on!
Error while serving https://jenkins.acme.com/prometheus
hudson.security.AccessDeniedException3: anonymous is missing the Plugin Usage View/PluginView permission
at hudson.security.ACL.checkPermission(ACL.java:79)
at hudson.security.AccessControlled.checkPermission(AccessControlled.java:51)
at org.jenkinsci.plugins.pluginusage.PluginUsageView.getUrlName(PluginUsageView.java:34)
at jenkins.model.Jenkins.getDynamic(Jenkins.java:3889)
Can I grant this to guests?
Great, I granted the Plugin Usage View/PluginView permission to the anonymous Users and the problem is gone.
I believe the change that introduces this is https://github.com/jenkinsci/plugin-usage-plugin/pull/19 and it is not a problem with Prometheus plugin.
Can I grant this to guests?
I did it just for testing purposes. But it couldn't be a solution for that. Already asked the owners of the plugin usage plugin.
Yes, same error indication here:
hudson.security.AccessDeniedException3: anonymous fehlt das Recht „Plugin Usage View/PluginView“
My workaround is to disable plugin-usage-plugin
as it is not that important and we do not use fine grained access control to apply the other workaround.
Stale issue message
Version report
Jenkins and plugins versions report:
Reproduction steps
Results
Expected result:
Expected 200 status code
Actual result:
Got 403 status code (URL works with token and when logging in).