Jenkins on OpenShift 4.x OAuth Integration Has Issues

rht-labs / labs-ci-cd

👻UNMAINTAINED - A collection of Red Hat Open Innovation Labs CI/CD components

Apache License 2.0

101 stars 70 forks source link

Jenkins on OpenShift 4.x OAuth Integration Has Issues #276

Closed InfoSec812 closed 5 years ago

InfoSec812 commented 5 years ago

The OAuth integration for Jenkins is not working in OpenShift 4.x.

We need to see if manually creating the OAuth resource might resolve the issue.

makentenza commented 5 years ago

Actual error while enabling OAuth:


{
  "kind" : "Status",
  "apiVersion" : "v1",
  "metadata" : { },
  "status" : "Failure",
  "message" : "forbidden: User \"system:anonymous\" cannot post path \"/oauth/token\"",
  "reason" : "Forbidden",
  "details" : { },
  "code" : 403
}```

Looks related to the SA Jenkins Pod uses, but not validated yet

makentenza commented 5 years ago

@InfoSec812 I'm closing this issue as the image coming with the GA version is working ok with OAuth. I'll open a new one so we can adapt our Jenkins s2i process to run in v4.1 as now is broken