Project

General

Profile

Actions
Copy link

Architecture #21446

closed

Disallow iframes in Rudder

Added by Alexis Mousset almost 2 years ago. Updated 9 months ago.

Status:
Rejected
Priority:
N/A
Assignee:
François ARMAND
Category:
Web - UI & UX
Target version:
7.2.0~rc1
Pull Request:
https://github.com/Normation/rudder/p...
Effort required:
Name check:
To do
Fix check:
To do
Regression:

Description

We had allowed them with SAMEORIGIN but it is not needed anymore, and we don't plan to add more. Let's remove it.

Actions
Copy link
 #1

Updated by Alexis Mousset almost 2 years ago

  • Status changed from New to In progress
  • Assignee set to Alexis Mousset
Actions
Copy link
 #2

Updated by Alexis Mousset almost 2 years ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Alexis Mousset to François ARMAND
  • Pull Request set to https://github.com/Normation/rudder/pull/4381
Actions
Copy link
 #3

Updated by Alexis Mousset almost 2 years ago

  • Private changed from No to Yes
Actions
Copy link
 #4

Updated by Alexis Mousset almost 2 years ago

Actually used by the openscap plugin, closing for now.

We could limit the set of pages with allowed iframes.

Actions
Copy link
 #5

Updated by Alexis Mousset almost 2 years ago

  • Status changed from Pending technical review to Rejected
Actions
Copy link
 #6

Updated by Alexis Mousset 9 months ago

  • Private changed from Yes to No
Actions
Copy link

Also available in: Atom PDF