What is CrumbId in Jenkins? and how important it is to use CrumbId for CSRF protection?

What is DevSecOps?

DevOps 2 Answers . 1 Upvoted

Can someone explain Jenkins Downstream and Upstream Jobs?

DevOps 1 Answers . 1 Upvoted

What are the popular DevOps tools?

DevOps 1 Answers . 0 Upvoted

Can you help me how to prepare for DevOps interview?

DevOps 1 Answers . 1 Upvoted

How can became a DevOps Expert?

DevOps 1 Answers . 0 Upvoted

Can you please explain about SSM?

DevOps1 Answers . 0 Upvoted

Can someone explain Jenkins Downstream and Upstream Jobs?

DevOps1 Answers . 1 Upvoted

What is DevSecOps?

DevOps2 Answers . 1 Upvoted

What are the popular DevOps tools?

DevOps1 Answers . 0 Upvoted

Can you help me how to prepare for DevOps interview?

DevOps1 Answers . 1 Upvoted

what does it mean kubernetes not supports for Docker?

DevOps0 Answers . 0 Upvoted

DevOps > Jenkins 1 second ago

What is CrumbId in Jenkins? and how important it is to use CrumbId for CSRF protection?

327 views . 1 answers . 0 likes . 1 shares

Sujatha D 1 answers

What is CrumbId in Jenkins? and how important it is to use CrumbId for CSRF protection?

Answers (1)

PR Reddy Best Answer 2 years ago

Cross-Site Request Forgery (CSRF) is the security vulnerability in web applications which allows to perform actions in Jenkins from other websites. Its highly recommended to enable CSRF to protect Jenkins from cross site operations.

CSRF protection is the concept of creating crumb (token) for the Jenkins and the user must provide crumb every time to build or change the Jenkins configuration.

For more details visit below link

https://devopsrealtime.com/what-is-jenkins-csrf-projection-how-to-run-jenkins-job-remotely-with-webhook/

Video: https://youtu.be/nqoVPCJGQOg

327 views . 1 shares