Jenkins: Content Security Policy

Run Jenkins with a number of plugins that save preserve HTML documents that are outside of the Jenkins pages, and your likely going to run into this issue when accessing, a blank page.

  • JavaDoc – You will get the frames but no content in the frames.
  • rspec – Report you will get an empty page.
  • rcov – Report you will get an empty page.
  • maven – Not sure as I haven’t ran into this one yet, but it’s documented that is has issues.

Jenkins has a wiki page on this issue: Configuring Content Security Policy

In short you to fix this you will need to modify JENKINS_JAVA_OPTIONS in the /etc/sysconfig/jenkins file on your Jenkins server.  Use the page above if you want to make very specific limits on what is allowed and not allowed, or you can add the following setting to disable it entirely:

-Dhudson.model.DirectoryBrowserSupport.CSP=\"\"

 

Ghostprogrammer
  • Ghostprogrammer
  • I am known for being able to quickly decipher difficult problems to assist development teams in producing a solution. I have been called upon to be the Team Lead for multiple large-scale projects. I have a keen interest in learning new technologies, always ready for a new challenge.

Leave a Comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: