Jenkins builds pull requests sent by untrusted users, or employ a security model that limits trust in users allowed to configure one or more jobs, this also ...
Sep 7, 2021 · This header is set to a very restrictive default set of permissions to protect Jenkins users from malicious HTML/JS files in workspaces, / ...
Missing: book/ | Show results with:book/
This guide documents how to identify components that will be incompatible with CSP rules and how to write and adapt UI code in a manner that is expected to be ...
Missing: book/ | Show results with:book/
The "Security" section of the web UI allows a Jenkins administrator to enable, configure, or disable key security features which apply to the entire Jenkins ...
Document Jenkins on Kubernetes ... It is possible to configure Content-Security-Policy. ... Once set, Jenkins will only serve resource URL requests via the resource ...
The following steps will delete the configuration for security realm and authorization strategy. Make sure you have a backup, to be able to restore the ...
Missing: /url | Show results with:/url
Feb 10, 2023 · This plugin implements Content-Security-Policy protection for the classic Jenkins UI.
Missing: book/ | Show results with:book/
Mar 25, 2020 · Description: An extension point in Jenkins allows selectively disabling cross-site request forgery (CSRF) protection for specific URLs.
Missing: book/ | Show results with:book/
Determines the Content Security Policy header sent for static files served by Jenkins. Only affects instances that don't have a resource root URL set up. See ...
User Handbook Overview · Installing Jenkins · Docker · Kubernetes · Platform Information · Java Support Policy · Linux Support Policy · Using Jenkins · Best ...
Missing: /url | Show results with:/url