Why do I receive lots of Found Invalid Crumb warnings in the logs?

June 30, 2017 08:52

Issue

You receive lots of warnings in your logs with the following pattern:

WARNING: Found invalid crumb xxxxxxxxxxxxx. Will check remaining parameters for a valid one... 
hudson.security.csrf.CrumbFilter doFilter 
WARNING: No valid crumb was included in request for /ajaxExecutors. Returning 403.

Environment

CloudBees Jenkins Operations Center

Resolution

The issue is related to JENKINS-40344. This bug materializes in the logs if you have CSRF protection enabled (which is a recommended practise), to learn what is CSRF Protection, you can click here.

In the meantime, and as a workaround, you can avoid your logs to be flooded whith these messages by changing the log level to SEVERE on the following logger hudson.security.csrf.CrumbFilter.

In order to do this, please follow the procedure below:

Navigate to Jenkins->Manage->System Log->Log Levels.
Write hudson.security.csrf.CrumbFilter in the textbox, select the SEVERElevel value and then click submit.

Was this article helpful?

1 out of 2 found this helpful

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.