dev/nixpkgs
1
0
Fork 0
Code Issues Pull Requests Actions2 Packages Projects Releases Wiki Activity
50eaf82b6f
nixpkgs/nixos/modules/services
History
Bjørn Forsman 50eaf82b6f nixos/jenkins-job-builder: fix jenkins authentication 
The current authentication code is broken against newer jenkins:

  jenkins-job-builder-start[1257]: Asking Jenkins to reload config
  jenkins-start[789]: 2022-07-12 14:34:31.148+0000 [id=17]        WARNING hudson.security.csrf.CrumbFilter#doFilter: Found invalid crumb 31e96e52938b51f099a61df9505a4427cb9dca7e35192216755659032a4151df. If you are calling this URL with a script, please use the API Token instead. More information: https://www.jenkins.io/redirect/crumb-cannot-be-used-for-script
  jenkins-start[789]: 2022-07-12 14:34:31.160+0000 [id=17]        WARNING hudson.security.csrf.CrumbFilter#doFilter: No valid crumb was included in request for /reload by admin. Returning 403.
  jenkins-job-builder-start[1357]: curl: (22) The requested URL returned error: 403

Fix it by using `jenkins-cli` instead of messing with `curl`.

This rewrite also prevents leaking the password in process listings. (We
could probably do it without `replace-secret`, assuming `printf` is a
shell built-in, but this implementation should be safe even with shells
not having a built-in `printf`.)

Ref https://github.com/NixOS/nixpkgs/issues/156400.
2022-07-16 12:30:41 +02:00
..
admin
amqp
audio Merge pull request from antifuchs/fix-151550 2022-06-26 23:32:18 +02:00
backup nixos/postgresql-backup: allow setting compression level 2022-07-11 21:28:22 +02:00
blockchain/ethereum
cluster nixos/kubernetes: use copyToRoot instead of deprecated contents 2022-07-15 10:23:06 +10:00
computing nixos/slurm: update systemd service for slurmd 2022-05-29 17:17:01 +02:00
continuous-integration nixos/jenkins-job-builder: fix jenkins authentication 2022-07-16 12:30:41 +02:00
databases nixos.redis: Fix disabling of RDB persistence. 2022-07-05 07:37:38 -04:00
desktops pipewire: fix bluetooth for system-wide configuration 2022-07-11 02:35:36 +02:00
development Merge pull request from hqurve/jupyter-extra-paths 2022-07-01 16:43:02 +00:00
display-managers nixos/greetd: fix minor typo for default user 2022-07-13 18:11:16 -04:00
editors
finance
games nixos/asf: ipcPasswordFile use nullOr 2022-06-04 12:00:45 -06:00
hardware nixos/argonone: init 2022-06-24 21:20:32 -03:00
home-automation nixos/home-assistant: make the reload triggers dependent upon cfg.config 2022-07-11 08:19:25 -07:00
logging logrotate: fix config check without sandbox 2022-07-09 09:55:03 +09:00
mail nixos/mailman: strip trailing \n when reading the secret 2022-07-04 21:15:56 +02:00
matrix Merge pull request from Ma27/matrix-docs 2022-07-04 16:56:27 +02:00
misc nixos/polaris: init 2022-07-08 12:27:48 -04:00
monitoring netdata: fix post start for module 2022-07-15 09:57:13 +02:00
network-filesystems Merge pull request from max-privatevoid/patch-6 2022-06-28 19:55:10 +03:00
networking Merge pull request from bb2020/dlna 2022-07-15 21:28:19 +02:00
printing
scheduling
search
security nixos/privacyidea: pin python to 3.9 2022-07-05 19:38:54 +02:00
system cachix-agent: allow restarts now that deployments are subprocesses 2022-07-13 11:40:54 -05:00
torrent
tracing nixos: add module for tempo 2022-07-08 21:33:17 +03:00
ttys nixos/kmscon: Add fonts option 2022-04-18 15:56:34 +02:00
video
wayland treewide: pkgs.systemd -> config.systemd.package 2022-05-05 20:00:31 +02:00
web-apps nixos/hedgedoc: convert to settings-style configuration 2022-07-10 08:07:14 -05:00
web-servers nixos/caddy: force caddy to reload config in ExecReload 2022-06-29 10:36:24 +08:00
x11 Merge pull request from SuperSamus/plasma 2022-07-16 00:56:08 +02:00