• Type: Bug
• Resolution: Duplicate
• Priority: Critical
• Component/s: robot-plugin
• Labels:

  None
• Environment:

  I am using Jenkins ver. 2.222.1 and the latest version of robot-plugin. On a Windows x64 Server

1. 

   image-2020-04-23-10-39-15-028.png

   35 kB

   2020-04-23 08:39

2. 

   image-2020-04-23-10-43-01-175.png

   140 kB

   2020-04-23 08:43

3. Reports_XML_and_HTML.zip

   142 kB

   2020-04-23 08:49

[JENKINS-62027] I am unable to view the log.html or report.html file because of javascript error messages

Collapse comment: Morgan Christiansson added a comment - 2020-05-15 13:58

Morgan Christiansson added a comment - 2020-05-15 13:58

Use this JVM option:

-Dhudson.model.DirectoryBrowserSupport.CSP="sandbox allow-scripts allow-same-origin; default-src 'none'; img-src 'self' data: ; style-src 'self' 'unsafe-inline' data: ; script-src 'self' 'unsafe-inline' 'unsafe-eval' ;"

Expand comment: Morgan Christiansson added a comment - 2020-05-15 13:58

Morgan Christiansson added a comment - 2020-05-15 13:58 Use this JVM option: -Dhudson.model.DirectoryBrowserSupport.CSP= "sandbox allow-scripts allow-same-origin; default -src 'none' ; img-src 'self' data: ; style-src 'self' 'unsafe-inline' data: ; script-src 'self' 'unsafe-inline' 'unsafe-eval' ;"

Collapse comment: Aleksi Simell added a comment - 2020-09-29 07:07

Aleksi Simell added a comment - 2020-09-29 07:07

mgaert Is this still an issue? Did the above solution help? You can also modify that from your Jenkins instance's script console by using System.setProperty("hudson.model.DirectoryBrowserSupport.CSP","sandbox allow-scripts; default-src 'none'; img-src 'self' data: ; style-src 'self' 'unsafe-inline' data: ; script-src 'self' 'unsafe-inline' 'unsafe-eval' ;").

By default, Jenkins is very restrictive on permissions for external reports, so those permissions need to be relaxed, or you need a resource root URL for your Jenkins instance to display reports.

Expand comment: Aleksi Simell added a comment - 2020-09-29 07:07

Aleksi Simell added a comment - 2020-09-29 07:07 mgaert Is this still an issue? Did the above solution help? You can also modify that from your Jenkins instance's script console by using System.setProperty("hudson.model.DirectoryBrowserSupport.CSP","sandbox allow-scripts; default-src 'none'; img-src 'self' data: ; style-src 'self' 'unsafe-inline' data: ; script-src 'self' 'unsafe-inline' 'unsafe-eval' ;") . By default, Jenkins is very restrictive on permissions for external reports, so those permissions need to be relaxed, or you need a resource root URL for your Jenkins instance to display reports.

Collapse comment: Pritam added a comment - 2024-01-04 08:04

Pritam added a comment - 2024-01-04 08:04

Hi aleksisimell , mgaert 

Do we have any permanent solution for this yet?

My current jenkins version : 2.346.2

Expand comment: Pritam added a comment - 2024-01-04 08:04

Pritam added a comment - 2024-01-04 08:04 Hi aleksisimell , mgaert   Do we have any permanent solution for this yet? My current jenkins version : 2.346.2

Collapse comment: Aleksi Simell added a comment - 2024-01-04 14:29

Aleksi Simell added a comment - 2024-01-04 14:29

samfishherv3, no. As mentioned in the plugin documentation, enabling this from the plugin by default is a security issue. You need to allow Jenkins separately to show external HTML files. You can add these options for Jenkins startup, so you don't need to re-enter them every time your Jenkins is restarted, but this is not doable nor will be doable by the plugin.

Expand comment: Aleksi Simell added a comment - 2024-01-04 14:29

Aleksi Simell added a comment - 2024-01-04 14:29 samfishherv3 , no. As mentioned in the plugin documentation , enabling this from the plugin by default is a security issue. You need to allow Jenkins separately to show external HTML files. You can add these options for Jenkins startup, so you don't need to re-enter them every time your Jenkins is restarted, but this is not doable nor will be doable by the plugin.