Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

System.setProperty("jenkins.model.DirectoryBrowserSupport.CSP", "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval'; style-src 'self' 'unsafe-inline';")


 To persist the security changes the following command can be executed from the command line :

java -Dhudson.model.DirectoryBrowserSupport.CSP="sandbox allow-scripts; default-src 'self'; script-src * 'unsafe-eval'; img-src *; style-src * 'unsafe-inline'; font-src *" -jar jenkins.war



NOTE : The web browser refresh does not always reload the page with the new relaxed rules due to caching.  To be sure this doesn't happen it's advised to restart your browser.

...