Issue
When using https on a CloudBees CI instance running on Openshift, I observe redirection issues. For instance, when setting up authentication with Google Auth or Saml, the authentication fails because there is a mismatch in the redirect URL between the authentication system and CloudBees CI.
Resolution
The issue is due to the helm chart not properly populating the Jenkins URL when using OperationsCenter.Route.tls.Enable: true
.
As a result, CloudBees CI thinks that its URL is using http
.
This will trigger a monitor.
A fix has been developed and released in CloudBees CI version 2.263.1.2 (chart version 3.24.1+80dadc174346).
Workaround
You can force the protocol manually from the helm release values.yaml
.
-
set the
OperationsCenter.Protocol
key tohttps
, for instance by runninghelm upgrade --reuse-values --set OperationsCenter.Protocol=https --version ${CHART_VERSION} ${RELEASE_NAME} cloudbees/cloudbees-core
. -
force the update of the URL by restarting the Operations Center.
Tested product/plugin versions
-
Workaround tested with CloudBees CI (CloudBees Core) versions 2.249.3.2 and 2.249.3.3.
-
Fix tested in 2.263.1.2.