Package io.jenkins.plugins.csp
Class ContentSecurityPolicyFilter
java.lang.Object
io.jenkins.plugins.csp.ContentSecurityPolicyFilter
- All Implemented Interfaces:
ExtensionPoint,HttpServletFilter
@Extension
@Restricted(org.kohsuke.accmod.restrictions.NoExternalUse.class)
public class ContentSecurityPolicyFilter
extends Object
implements HttpServletFilter
Inject the CSP header based on
ContentSecurityPolicyConfiguration into Jenkins views.
The reporting URL is implemented by ContentSecurityPolicyRootAction.
At the Filter level, Context is not available.
We later attempt to add Context information in ContentSecurityPolicyDecorator.-
Nested Class Summary
Nested classes/interfaces inherited from interface hudson.ExtensionPoint
ExtensionPoint.LegacyInstancesAreScopedToHudson -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionbooleanhandle(jakarta.servlet.http.HttpServletRequest req, jakarta.servlet.http.HttpServletResponse rsp)
-
Constructor Details
-
ContentSecurityPolicyFilter
public ContentSecurityPolicyFilter()
-
-
Method Details
-
handle
@SuppressRestrictedWarnings(jenkins.security.ResourceDomainConfiguration.class) public boolean handle(jakarta.servlet.http.HttpServletRequest req, jakarta.servlet.http.HttpServletResponse rsp) - Specified by:
handlein interfaceHttpServletFilter
-