|
||||||||
|
This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators. For more information on JIRA, see: http://www.atlassian.com/software/jira |
||||||||
You received this message because you are subscribed to the Google Groups "Jenkins Issues" group.
To unsubscribe from this group and stop receiving emails from it, send an email to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
In Jenkins 1.502 and plugin version 1.6, the security setting "Logged-in users can do anything" with "OpenID SSO" works properly IFF "Prevent Cross Site Request Forgery exploits" is DISABLED. Enabling CSRF security breaks and exhibits the behavior OP describes.