There’s a new resource subdomain setting for this to avoid allowing cross
site scripting exploits from published stuff on the Jenkins domain. It’s an
admin setting, though.
On Sun, Aug 16, 2020 at 05:25 Sebastian wrote:
> Hi,
>
>
>
> when the accessing Javadocs on the new ci-builds.apache.org th
Hi,
when the accessing Javadocs on the new ci-builds.apache.org the server sends
Content-Security-Policy: sandbox; default-src 'none'; img-src 'self';
style-src 'self';
which causes that the "nightly" docs aren't shown properly in the browser, eg.
- frames are empty
https://ci-builds.apac
