Subresource Integrity (SRI) is a security feature that enables browsers to verify that resources they fetch are delivered without unexpected manipulation. The CAE supports SRI for JavaScript and CSS files.

All CSS and JS Freemarker templates in the blueprint are prepared and render the integrity-hash by default via a new function cm.getIntegrityHash(self).

Example:

<#assign integrityHash="${cm.getIntegrityHash(self)}"/>

Because browsers enforce CORS protection, if CSS files or images are accessed cross-domain with SRI enabled, this change can require additional CORS configuration, if CSS files and images are linked with absolute paths.

(CMS-6352)