Redirection issue with Openshift when using https

Issue

When using https on a CloudBees CI instance running on Openshift, I observe redirection issues. For instance, when setting up authentication with Google Auth or Saml, the authentication fails because there is a mismatch in the redirect URL between the authentication system and CloudBees CI.

Environment

Resolution

The issue is due to the helm chart not properly populating the Jenkins URL when using OperationsCenter.Route.tls.Enable: true. As a result, CloudBees CI thinks that its URL is using http. This will trigger a monitor. A fix has been developed and released in CloudBees CI version 2.263.1.2 (chart version 3.24.1+80dadc174346).

Workaround

You can force the protocol manually from the helm release values.yaml.

set the OperationsCenter.Protocol key to https, for instance by running helm upgrade --reuse-values --set OperationsCenter.Protocol=https --version ${CHART_VERSION} ${RELEASE_NAME} cloudbees/cloudbees-core.
force the update of the URL by restarting the Operations Center.

Tested product/plugin versions

Workaround tested with CloudBees CI (CloudBees Core) versions 2.249.3.2 and 2.249.3.3.
Fix tested in 2.263.1.2.

Related Issue(s)

CPLT2-6879

This article is part of our Knowledge Base and is provided for guidance-based purposes only. The solutions or workarounds described here are not officially supported by CloudBees and may not be applicable in all environments. Use at your own discretion, and test changes in a safe environment before applying them to production systems.