Comments (18)
Srokap
commented on August 16, 2024
3
@killerrin Temporary workaround would be to use
- task: [email protected]in your pipeline, though in my case I have a lot of pipelines to update :)
from azure-pipelines-tasks.
GSFZamai
commented on August 16, 2024
2
I don't know. I'm using the Npm Service connection with Personal Access Tokan (PAT) wich is a single line already...
Looks like is some internal change on the commit they added a validation to match new lines caracters.
Added setSecret:
setSecret Implementation:
Maybe, in my case, the Npm Service connection is generating something with new lines characters...
from azure-pipelines-tasks.
matt-vanderkolk
commented on August 16, 2024
1
I have a repro of this issue internally as well. Feel free to reach out.
from azure-pipelines-tasks.
Lorondos
commented on August 16, 2024
1
We had this issue as well on our pipelines, we have implemented the hard coded previous version to fix our pipelines for now, but I figure the next step is to make our secrets valid by removing anything that flags as multiline?
from azure-pipelines-tasks.
killerrin
commented on August 16, 2024
1
This issue has suddenly resurrected on our pipelines as well. Although in my case I'm already using the npmAuthenticate@0 task, so unfortunately I can't downgrade as a workaround :/
from azure-pipelines-tasks.
Srokap
commented on August 16, 2024
1
@janharders Unfortunately I don't know of a way.
Your best bet might be trying to set SYSTEM_UNSAFEALLOWMULTILINESECRET environment variable to TRUE to bypass the multiline error, but it might cause unexpected behavior. I think it might "only" risk leaking your creds to stdout.
Have a look here, how it's implemented: https://github.com/microsoft/azure-pipelines-task-lib/blob/7c0de0dba61afb899068c35d88257017bd3b4736/node/task.ts#L241
from azure-pipelines-tasks.
tintse-thxsky-MSFT
commented on August 16, 2024
1
update: rollback to previous task version should is ongoing.
from azure-pipelines-tasks.
KnightCrawler3
commented on August 16, 2024
Facing the same issue with 0.241.1
from azure-pipelines-tasks.
Nathanvdk
commented on August 16, 2024
We have the same problem since yesterday in our build pipelines.
from azure-pipelines-tasks.
MelvinVermeer
commented on August 16, 2024
Facing the same issue
from azure-pipelines-tasks.
alexander-miszko
commented on August 16, 2024
Facing the same issue with 0.241.0, downgrading the version fixes it.
from azure-pipelines-tasks.
Srokap
commented on August 16, 2024
I did some digging and it seems that registry.auth will always be a multiline string because it is made into such format here.
See how auth value is built (lineEnd is os.EOL):
switch (endpointAuth.scheme) {
case 'UsernamePassword':
username = endpointAuth.parameters['username'];
password = endpointAuth.parameters['password'];
email = username; // npm needs an email to be set in order to publish, this is ignored on npmjs
password64 = Buffer.from(password).toString('base64');
auth = nerfed + ':username=' + username + lineEnd;
auth += nerfed + ':_password=' + password64 + lineEnd;
auth += nerfed + ':email=' + email + lineEnd;
break;
case 'Token':
const apitoken = endpointAuth.parameters['apitoken'];
tl.setSecret(apitoken);
if (!isVstsTokenAuth){
// Use Bearer auth as it was intended.
auth = nerfed + ':_authToken=' + apitoken + lineEnd;
} else {
// Azure DevOps does not support PATs+Bearer only JWTs+Bearer
email = 'VssEmail';
username = 'VssToken';
password64 = Buffer.from(apitoken).toString('base64');
auth = nerfed + ':username=' + username + lineEnd;
auth += nerfed + ':_password=' + password64 + lineEnd;
auth += nerfed + ':email=' + email + lineEnd;
}
break;
}
tl.setSecret(password);
tl.setSecret(password64);As mentioned above, the bug was introduced in this PR https://github.com/microsoft/azure-pipelines-tasks/pull/19995/files
from azure-pipelines-tasks.
Srokap
commented on August 16, 2024
FYI @tintse-thxsky-MSFT @embetten
from azure-pipelines-tasks.
tintse-thxsky-MSFT
commented on August 16, 2024
ack, looking into it. Thank you for everyone's input.
from azure-pipelines-tasks.
killerrin
commented on August 16, 2024
@Srokap That did it, Thanks!
from azure-pipelines-tasks.
janharders
commented on August 16, 2024
@killerrin Temporary workaround would be to use
- task: [email protected]in your pipeline, though in my case I have a lot of pipelines to update :)
@Srokap: Do you know if there is any option to specifiy the exact task version in a classic release pipeline (no YAML)?
Thx in advance!
from azure-pipelines-tasks.
Related Issues (20)
- [enhancement]: Allow configure Kubernetes@x task output as secret
- [BUG]: Invoke-Sqlcmd : Could not load file or assembly 'Azure.Core, Version=1.6.0.0, Culture=neutral HOT 2
- [Question]: AzureRmWebAppDeployment@4 and XmlTransform - should it work when using stages?
- [BUG]:Nothing will be added to build artifact file HOT 1
- [BUG]: Azure IoT Edge v2 - Failed to fetch container registry authentication token HOT 11
- [enhancement]: jdk source add microsoft option
- [BUG]: The system cannot find the file specified HOT 1
- [REGRESSION]: Azure file copy fails on one Agent in Pool HOT 17
- [enhancement]: Run Maven@4 task in detached mode
- [BUG]: DockerCompose task compatibility mode issue HOT 10
- [BUG]: AzurePowerShell@5 does not set environment variables on Windows HOT 2
- [REGRESSION]: DockerCompose@0 no longer supports default projectName for GitHub Repostitories HOT 21
- [BUG]: Object parameter between pipeline and template converts "3.10" to "3.1" HOT 4
- [BUG]: Passing tests using "DynamicData" not recognized as passed in test run
- [BUG]: Gradle task Code analysis failed if test task has failures HOT 1
- [Question]: Why is mvn clean enforced for code coverage?
- AzurePowerShell@3 - Failed to Initialize Existing Az modules HOT 5
- [BUG]: UseDotNet@2 with global.json installs incorrect SDK version HOT 2
- [BUG]: DTAExecutionHost.exe failed with code 1 - Error occurred while publishing the test results : OutOfMemoryException
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from azure-pipelines-tasks.