-
Bug
-
Resolution: Not A Defect
-
Blocker
-
None
-
Jenkins version: 2.414.3 OWASP Markup formatter plugin version is 162.v0e6ec0fcfcf6
iframes is not working in Jenkins job description
Hi, I have entered some html code/text in a Jenkins job description. This basically displays some graphs from a html page. I am able to see the links to the html page in the job description (and they work fine too) but I want the actual graphs to be displayed in the Jenkins job description as well. This was working fine but until few days ago, I am seeing only blank boxes with the hyperlinks.
My html code in the job description is something like this:
> <tr> <td><a
> href="http://example/activity.html?job=current_jenkins_job&test=XYZ"
> target="_blank">Activity</a></td> <td><a
> href="http://example/procedures.html?job=current_jenkins_job&test=XYZ"
> target="_blank">Procedures</a></td> </tr>
>
> <tr> <td><iframe
> src="http://example/procedures.html?job=current_jenkins_job&test=XYZ"
> width="750" height="700"></iframe></td> <td><iframe
> src="http://example/activity.html?job=current_jenkins_job&test=XYZ"
> width="750" height="700"></iframe></td> </tr>
What is happening here is that there is only partial renderation of HTML tags. The other HTML tags which I have used are working fine except for iframes. I have tried some other alternatives like "embed" and "object data" instead and that did not work. Can anyone please help how I can still see the graphs in Jenkins job description? My Jenkins verison is 2.414.3 and OWASP Markup Formatter plugin version is 162.v0e6ec0fcfcf6.
NOTE: This was working till last week with the same jenkins and plugin versions but now iframes is not working.
Is this not supported any more? Any information about this would be helpful. Thanks in advance!
[JENKINS-75021] iframes is not working in Jenkins job description
Hi, I am using microsoft edge as the browser and no jenkins configurations were changed. I have tried with "safe html" and "UNSAFE" options in manage jenkins–>security–>markup formatter and both dont work. Also, i dont get any browser errors or any other error. 
Its just that -
- there is an empty box displayed instead of the graph and hyperlink to the html page when i choose "UNSAFE" from above in jenkins security setttings
- only hyperlinks are displayed when i choose "safe html" option in jenkins security settings
-
aditi
added a comment - - edited Hi, I am using microsoft edge as the browser and no jenkins configurations were changed. I have tried with "safe html" and "UNSAFE" options in manage jenkins–>security–>markup formatter and both dont work. Also, i dont get any browser errors or any other error. Its just that -
there is an empty box displayed instead of the graph and hyperlink to the html page when i choose "UNSAFE" from above in jenkins security setttings
only hyperlinks are displayed when i choose "safe html" option in jenkins security settings
Closing after a week without additional details that show this is a Jenkins issue. Since the Jenkins version did not change between the working and non-working states, I assume it is new security precautions in the web browser.
This seems like a request for help to diagnose a local change in your configuration. Since it was working previously and is no longer working, I assume that something has changed in your configuration. That's not a Jenkins bug or a Jenkins enhancement. The Jenkins issue tracker is used to track bugs and enhancements. We use https://community.jenkins.io for question and answer.
If you believe this is a Jenkins bug and is not related to recent changes in your configuration, please provide enough information so that others might be interested to volunteer their time to duplicate the bug. Others are much more likely to volunteer their time to duplicate a bug if you provide enough information so that they can duplicate it. "How to report an issue" provides a detailed list of the type of information that is needed. Others are much more likely to volunteer their time to duplicate a bug if you confirm that the bug is visible on the most recent Jenkins release (either weekly or LTS).
Jenkins 2.479.2 with the OWASP markup formatter 162.v0e6ec0fcfcf6 does not display the iframe with either Firefox or Google Chrome. When I switch to the "Anything Goes" formatter (unsafe, but maybe that's OK in your environment), then Firefox and Google Chrome both display the message that they can't open the page.
My embedded HTML in the job description is
<table> <tr> <td><a href="https://www.jenkins.io/" target="_blank">Activity</a></td> <td><a href="https://www.jenkins.io/" target="_blank">Procedures</a></td> </tr> <tr> <td>Activity iframe <iframe src="https://www.jenkins.io/" width="750" height="700"></iframe> </td> <td>Procedures iframe <iframe src="https://www.jenkins.io/" width="750" height="700"></iframe> </td> </tr> </table>Firefox reports
Google Chrome reports