OpenID

The Jenkins project announced unresolved security vulnerabilities affecting the current version of this plugin (why?):

CSRF vulnerability
Session fixation vulnerability
Open redirect vulnerability

Documentation
Releases
Issues
Dependencies
Health Score

Currently, there are no open issues.

Version: 2.4

Released: 5 years ago

Requires Jenkins 2.107.3

ID: openid

Installed on 0.22% of controllers

View detailed version information

Links

Open issues (Jira)

Report an issue (Jira)

Extension Points

Labels

Authentication and User Management

Maintainers

Michael Nazzareno

Help us improve this page!

To propose a change submit a pull request to the plugin page on GitHub.

Previous Security Warnings

CSRF vulnerability and missing permission check allow SSRF
- Affects version 2.3.0 and earlier