[JENKINS-74151] [release] Extract inline script block and event handler in hudson/plugins/release/pipeline/ReleaseStep/config.jelly

<h4><a name="Problems"></a>Problems</h4>



```
== Inline Script Block
Line: 34
----
<script>
    function loadParams() {
const div = document.getElementById('params');
const parametersTextBox = document.getElementById('${jobFieldId}')

const url = '${descriptor.descriptorUrl}/parameters?job=' + encodeURIComponent(parametersTextBox.value) + '&amp;context=' + encodeURIComponent('${descriptor.context}')
fetch(url)
    .then(rsp => {
if (rsp.ok) {
    rsp.text().then(responseText => {
div.innerHTML = responseText;
Behaviour.applySubtree(div);
    })
} else {
    div.innerHTML = "<b>ERROR</b>: Failed to load parameter definitions: " + rsp.statusText;
}
    })
    }
</script>
----

== Inline Event Handler
Line: 30
----
<f:textbox onblur="loadParams()" id="${jobFieldId}"/>
----

```

<h4><a name="Solutions"></a>Solutions</h4>

<p><a href="https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks" class="external-link" target="_blank" rel="nofollow noopener">https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks</a><br/>
<a href="https://www.jenkins.io/doc/developer/security/csp/#inline-event-handlers" class="external-link" target="_blank" rel="nofollow noopener">https://www.jenkins.io/doc/developer/security/csp/#inline-event-handlers</a></p>

---
<details><summary><i>Originally reported by <a href="https://issues.jenkins.io/secure/ViewProfile.jspa?name=basil">basil</a>, imported from: <a class="original-jira-link" href="https://issues.jenkins.io/browse/JENKINS-74151" target="_blank">[release] Extract inline script block and event handler in hudson/plugins/release/pipeline/ReleaseStep/config.jelly</a></i></summary>
<i><ul>
<li><b>assignee</b>: <img align="left" width="20" src="https://raw.githubusercontent.com/jenkinsci/artifacts-from-jira-issues/refs/heads/main/avatars/shlomo_dahan.svg" title="shlomo_dahan's avatar" /> <a href="https://issues.jenkins.io/secure/ViewProfile.jspa?name=shlomo_dahan">shlomo_dahan</a>
<li><b>status</b>: In Review
<li><b>priority</b>: Minor
<li><b>component(s)</b>: release-plugin
<li><b>label(s)</b>: CSP
<li><b>resolution</b>: Unresolved
<li><b>votes</b>: 0
<li><b>watchers</b>: 1
<li><b>imported</b>: 20251223-222157
</ul></i>
<details><summary>Raw content of original issue</summary>

<pre>
<h4><a name="Problems"></a>Problems</h4>

<div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent panelContent">
<pre>== Inline Script Block
Line: 34
----
&lt;script&gt;
            function loadParams() {
                const div = document.getElementById('params');
                const parametersTextBox = document.getElementById('${jobFieldId}')

                const url = '${descriptor.descriptorUrl}/parameters?job=' + encodeURIComponent(parametersTextBox.value) + '&amp;amp;context=' + encodeURIComponent('${descriptor.context}')
                fetch(url)
                    .then(rsp =&gt; {
                        if (rsp.ok) {
                            rsp.text().then(responseText =&gt; {
                                div.innerHTML = responseText;
                                Behaviour.applySubtree(div);
                            })
                        } else {
                            div.innerHTML = "&lt;b&gt;ERROR&lt;/b&gt;: Failed to load parameter definitions: " + rsp.statusText;
                        }
                    })
            }
        &lt;/script&gt;
----

== Inline Event Handler
Line: 30
----
&lt;f:textbox onblur="loadParams()" id="${jobFieldId}"/&gt;
----
</pre>
</div></div>

<h4><a name="Solutions"></a>Solutions</h4>

<p><a href="https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks" class="external-link" target="_blank" rel="nofollow noopener">https://www.jenkins.io/doc/developer/security/csp/#inline-javascript-blocks</a>
<a href="https://www.jenkins.io/doc/developer/security/csp/#inline-event-handlers" class="external-link" target="_blank" rel="nofollow noopener">https://www.jenkins.io/doc/developer/security/csp/#inline-event-handlers</a></p></pre>
</details>
</details>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

[JENKINS-74151] [release] Extract inline script block and event handler in hudson/plugins/release/pipeline/ReleaseStep/config.jelly #147

Problems

Solutions

Problems

Solutions

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

[JENKINS-74151] [release] Extract inline script block and event handler in hudson/plugins/release/pipeline/ReleaseStep/config.jelly #147

Description

Problems

Solutions

Problems

Solutions

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions