Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-63454

Allow full Gatling HTML to be displayed directly online from Jenkins rather than having to download locally

XMLWordPrintable

    • Icon: Improvement Improvement
    • Resolution: Unresolved
    • Icon: Major Major
    • gatling-plugin
    • None

      Since 1.3.0, Gatling reports are always served as ZIP file. This is absolutely inconveniant. I suppose the decision was necessary to quickly fix the XSS vulnerability, but there is certainly a better solution than this.  Maybe just like the HTML publisher plugin does (https://wiki.jenkins.io/display/JENKINS/Configuring+Content+Security+Policy).

      I can also imagine a security switch for enabling the old behavior. We are using Jenkins within our intranet with low security constraints, so we don't fear XSS attacks.

          [JENKINS-63454] Allow full Gatling HTML to be displayed directly online from Jenkins rather than having to download locally

          Mark Summers added a comment -

          In practice, this change simply means that the plugin can never be upgraded, since users will not tolerate the change in behaviour.

          Mark Summers added a comment - In practice, this change simply means that the plugin can never be upgraded, since users will not tolerate the change in behaviour.

          Alisson added a comment -

          So, Will this issue be corrected? Has anyone found a solution?

          Alisson added a comment - So, Will this issue be corrected? Has anyone found a solution?

          Thomas Jäckle added a comment -

          We always thought this was a bug and not an intentional "fix" of a XSS problem.

          Very sad, this makes the plugin unusable in version 1.3.0.

          Thomas Jäckle added a comment - We always thought this was a bug and not an intentional "fix" of a XSS problem. Very sad, this makes the plugin unusable in version 1.3.0.

            Unassigned Unassigned
            sebpaul Sebastian Paul
            Votes:
            4 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated: