Jenkins CSRF config check

gistfile1.txt

// From https://community.jenkins.io/t/random-403-invalid-crumb-messages-through-out-jenkins/35619/4
// by @poddingue - Bruno Verachten, GSoC Mentors 

import jenkins.model.Jenkins
import hudson.security.csrf.CrumbIssuer
import jenkins.security.s2m.AdminWhitelistRule

def j = Jenkins.instance

println "=== Jenkins Security & CSRF Diagnostics ==="
println "Jenkins URL: ${j.getRootUrl() ?: '(not set)'}"
println "Security Realm: ${j.getSecurityRealm()?.class?.name ?: 'none'}"
println "Authorization Strategy: ${j.getAuthorizationStrategy()?.class?.name ?: 'none'}"

CrumbIssuer ci = j.getCrumbIssuer()
if (ci) {
    println "Crumb issuer: ${ci.class.name}"
    println "  - Crumb request field: ${ci.getCrumbRequestField()}"
    println "  - Sample crumb: ${ci.getCrumb()}"
} else {
    println "Crumb issuer: NONE (CSRF protection is disabled)"
}

def whitelist = j.getInjector().getInstance(AdminWhitelistRule)
println "Master-to-Agent Access Control: ${whitelist.getMasterKillSwitch() ? 'DISABLED' : 'ENABLED'}"

println "=== End ==="