Open ID (Google Apps) SSO security realm

Issue

  • If your endpoint is in SSL and you are using OpenID (Google Apps) SSO Security Realm option in CJOC or CJE security
    configuration page, then the certificate fails to validate with exception:
javax.servlet.ServletException: java.lang.RuntimeException: Failed to instantiate class hudson.plugins.openid.GoogleAppSsoSecurityRealm from {"value":"2","stapler-class":"hudson.plugins.openid.GoogleAppSsoSecurityRealm","$class":"hudson.plugins.openid.GoogleAppSsoSecurityRealm"}
	at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:796)
	at org.kohsuke.stapler.Stapler.invoke(Stapler.java:876)
	at org.kohsuke.stapler.MetaClass$13.dispatch(MetaClass.java:411)
	at org.kohsuke.stapler.Stapler.tryInvoke(Stapler.java:746)
	at org.kohsuke.stapler.Stapler.invoke(Stapler.java:876)
	at org.kohsuke.stapler.Stapler.invoke(Stapler.java:649)
	at org.kohsuke.stapler.Stapler.service(Stapler.java:238)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:848)
	....
  • Google Apps SSO no longer supported in Jenkins OpenID plugin

Environment

  • CloudBees Jenkins Operations Center
  • CloudBees Jenkins Enterprise

Resolution

You may use the Login with Google Security Realm option by installing Google Login Plugin instead of Google SSo with open id.
Please check Google Apps SSO no longer supported in Jenkins OpenID plugin
for more details information about of not using OpenID plugin.

Google SSO with open id hasn’t worked since 2015 and you should not use it.

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.