Details
-
Type:
New Feature
-
Status: Closed (View Workflow)
-
Priority:
Major
-
Resolution: Won't Fix
-
Component/s: core
-
Labels:None
-
Similar Issues:
Description
As of 1.502 the JSONP function is no longer available unless hudson.model.Api.INSECURE is set to true.
It would be desireable to have a option to set this to true via checkbox in the web interface ( Configure Global Security page).
Similar to the existing "Prevent Cross Site Request Forgery exploits" checkbox.
Attachments
Issue Links
- is related to
-
JENKINS-16936 Extension point for secure users of Api
-
- Resolved
-
A different issue is already filed to supersede this flag, which was only meant as an emergency fallback for sites badly impacted by the change.