[
https://issues.jenkins-ci.org/browse/JENKINS-13138?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=160459#comment-160459
]
Sébastien Heurtematte commented on JENKINS-13138:
-------------------------------------------------
I was able to isolate the main problem.
It's due to another plugin : HTML5 Notifier Plugin which breaks CSRF
protection.
There is an active bug about this problem : JENKINS-13038
You can reproduce with these steps :
- plugin mantis and html5 notifier in jenkins plugin directory
- activate CSRF protection with "Default Crumb Issuer"
- test verify action
> Verify action doesn't work with CSRF option
> -------------------------------------------
>
> Key: JENKINS-13138
> URL: https://issues.jenkins-ci.org/browse/JENKINS-13138
> Project: Jenkins
> Issue Type: Bug
> Components: mantis
> Affects Versions: current
> Environment: Debian x64
> Reporter: Sébastien Heurtematte
> Assignee: sogabe
> Priority: Minor
> Labels: csrf, mantis
> Attachments: mantis.jpg
>
>
> Etat HTTP 403 - No valid crumb was included in the request
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jenkins-ci.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
