TeamCity On-Premises
 
Get TeamCity On-Premises
You are viewing the documentation for an earlier version of TeamCity On-Premises.

Content Security Policy in TeamCity

Last modified: 26 April 2022

TeamCity implements additional HTTP security with the Content-Security-Policy (CSP) header.

The header prohibits TeamCity pages from downloading external resources, with some whitelisted exceptions. Downloading from non-whitelisted resources will be blocked.

In some setups, you may need to allow downloading external resources. For example, when using analytics tools or when integrating TeamCity with external services via a plugin.

As a plugin developer, you can provide CSP directives via the ContentSecurityPolicyConfig OpenAPI interface.