The Maven documentation sites link is broken for Jenkins Maven project since Jenkins 1.641 / Jenkins 1.625.3.
- CloudBees Jenkins Enterprise
- CloudBees Jenkins Operations Center
You need to update HTML Publisher Plugin to a current version. It can show its frame even with Content-Security-Policy restrictions.
Once you’ve done this, if the web page you’re trying to view still has presentation issues due its structure and the
features (CSS, JSS, frames, …) it uses, please run the following script in
Jenkins Script Console ( Manage Jenkins –> Script Console).:
This will remove the Content-Security-Policy header completely, and allow loading all frames, scripts, objects, etc.,
so any content should (after clearing browser caches) be able to load without any further errors.
As documented on the Jenkins wiki page,
this is a viable solution in some situations, but it depends on your environment whether this introduces a security issue.
Please make sure to read the Considerations section of the Jenkins wiki page as the above does introduce a security issue.