Map of currently registered CSP events on this page.
Name of the POST parameter for transmitting the nonce.
The value of the nonce to be used.
GitHub #5790: When using jQuery to trigger a click event on a button while using CSP we must set preventDefault or else it will trigger a non-ajax button click.
The target of this click event.
the JQuery click event
Perform a CSP safe eval().
The JavaScript code to evaluate.
Nonce value. Leave out if not using CSP.
Optional Window context to call eval from.
Perform a CSP safe eval() with a return result value.
The JavaScript code to evaluate.
Nonce value. Leave out if not using CSP.
Optional Window context to call eval from.
The result of the evaluated JavaScript code.
CSP won't allow string-to-JavaScript methods like eval() and new Function().
This method uses JQuery globalEval to safely evaluate the function if CSP is enabled.
The element executing the function (aka this).
The JavaScript code to evaluate. Two variables will be in scope for the code: (a) the
this context, which is set to the given id, and (b) the event variable, which is set to the given e.
The event from the caller to pass through.
Does this component have a registered AJAX event.
ID of an element
Event to listen to, with the on prefix, such as onclick or onblur.
true if component has this AJAX event
Sets the given nonce to all forms on the current page.
Nonce to set. This value is usually supplied by the server.
Checks if the given form is a Faces form.
The form to check.
true if the form is a Faces form.
Registers an event listener for the given element.
ID of an element
Event to listen to, with the on prefix, such as onclick or onblur.
Callback that may return false to prevent the default behavior of the event.
Generated using TypeDoc
The object with functionality related to handling the
script-srcdirective of the HTTP Content-Security-Policy (CSP) policy. This makes use of a nonce (number used once). The server must generate a unique nonce value each time it transmits a policy.