Merge pull request kubernetes#13866 from mirandachrist/gob

Loosen cookie-secret requirement
yannizhang2019 · Aug 13, 2019 · 2334826 · 2334826
2 parents b5ee2fd + 8126ce8
commit 2334826
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/prow/cmd/deck/main.go b/prow/cmd/deck/main.go
@@ -366,7 +366,7 @@ func main() {
 
 	// if we allow direct reruns, we must protect against CSRF in all post requests using the cookie secret as a token
 	// for more information about CSRF, see https://github.com/kubernetes/test-infra/blob/master/prow/cmd/deck/csrf.md
-	if o.rerunCreatesJob && csrfToken == nil {
+	if o.rerunCreatesJob && csrfToken == nil && !cfg().Deck.RerunAuthConfig.AllowAnyone {
 		logrus.Fatal("Rerun creates job cannot be enabled without CSRF protection, which requires --cookie-secret to be exactly 32 bytes")
 		return
 	}