Package io.jenkins.plugins.csp

Class ContentSecurityPolicyRootAction

java.lang.Object
hudson.model.InvisibleAction
io.jenkins.plugins.csp.ContentSecurityPolicyRootAction
All Implemented Interfaces:
ExtensionPoint, Action, ModelObject, RootAction, UnprotectedRootAction
@Extension @Restricted(org.kohsuke.accmod.restrictions.NoExternalUse.class) @Symbol("contentSecurityPolicyRootAction") public class ContentSecurityPolicyRootAction extends InvisibleAction implements UnprotectedRootAction
Reporting endpoint for CSP violations. StaplerRequest2.getRestOfPath() is used to associate violations with the view they occur in; ContentSecurityPolicyDecorator needs to have a dynamic report URL for that.

While this is an UnprotectedRootAction, only submissions with correct HMAC from Context.encodeContext(Object, Authentication, String) will be accepted.

  • Field Details

  • Constructor Details

    • ContentSecurityPolicyRootAction

      public ContentSecurityPolicyRootAction()

  • Method Details

    • getUrlName

      public String getUrlName()
      Specified by:
      getUrlName in interface Action
      Overrides:
      getUrlName in class InvisibleAction

    • doDynamic

      @POST public org.kohsuke.stapler.HttpResponse doDynamic(org.kohsuke.stapler.StaplerRequest2 req)