Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-32182

Cannot display JS components due to latest Content Security Policy

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not A Defect
    • Icon: Major Major
    • cucumber-reports-plugin
    • Jenkins 1.625.3.1
      cucumber-reports-plugin 1.0.0

      Cucumber Reports Plugin is not compatible with the Content Security Policy. Since Jenkins 1.625.3 and the implementation of SECURITY-95, Jenkins is unable to render JS components in the Cucumber reports (see attached screenshot and web console logs).

      SECURITY-95: https://github.com/jenkinsci/jenkins/blob/jenkins-1.625.3/test/src/test/java/hudson/model/DirectoryBrowserSupportTest.java#L174
      Content Security Policy: http://content-security-policy.com/
      An "unsafe" workaround can be found here : https://wiki.jenkins-ci.org/display/JENKINS/Configuring+Content+Security+Policy

        1. console.log
          7 kB
          Allan BURDAJEWICZ
        2. cucumber-reports.png
          526 kB
          Allan BURDAJEWICZ

            dszczepanik Damian Szczepanik
            allan_burdajewicz Allan BURDAJEWICZ
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: