Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-63733

Htmlpublisher plugin - Not rendering Test Report correctly

    XMLWordPrintable

    Details

    • Similar Issues:

      Description

      I support a Jenkins instance for my company and we are using the HTML Publisher plugin. One of our users has a scala test that publishes a report, but the report does not show CSS or JS. I looked online and it looks like I need to modify the CSP to allow CSS and JS. I'm looking at the page below to try and configure it. https://www.jenkins.io/doc/book/system-administration/security/configuring-content-security-policy/#ConfiguringContentSecurityPolicy-HTMLPublisherPlugin I can fix this temporarily by using
      System.setProperty("hudson.model.DirectoryBrowserSupport.CSP", "sandbox allow-same-origin allow-scripts; default-src 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline';");
      This looks like this would disable CSP entirely which would obviously make our Jenkins more vulnerable. So, I'm trying to understand how I would modify the header to allow the CSS and JS for the HTML Publisher plugin, without creating unnecessary vulnerabilities.

      Any suggestions are appreciated. Thanks!

        Attachments

          Activity

          xer0daze Dominic Zarelli created issue -
          Show
          xer0daze Dominic Zarelli added a comment - Found an alternative -  https://support.cloudbees.com/hc/en-us/articles/360038990971#configuringtheresourcedomainandanewroute Thanks
          xer0daze Dominic Zarelli made changes -
          Field Original Value New Value
          Resolution Fixed [ 1 ]
          Status Open [ 1 ] Closed [ 6 ]

            People

            Assignee:
            r2b2_nz Richard Bywater
            Reporter:
            xer0daze Dominic Zarelli
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: