Closed timja closed 6 years ago
wfollonier Any idea what to look for here?
masond What's the output of User.getAll() in the script console?
Patch added in link.
The problem seems to come from our patched library used for JSON. The "null" String value does not seem to be recognized and is just converted to null.
masond If you cannot wait for the patch to be released in the weekly, you can just visit the configure page of the user (/user/null/configure) and revoke the legacy token manually while being an administrator.
And thank you for the report!
We recently upgraded to 2.131, and saw the legacy token security advisory and revoked almost all of them. There's one token we can't revoke, however. We have a user whose legal name is `null`, and we are unable to delete their associated legacy API token:
The list in https://jenkins01.int.example.com/administrativeMonitor/legacyApiToken/manage looks like:
Originally reported by masond, imported from: Cannot revoke legacy API tokens for account with id 'null'