Actions
Bug #24101
closed
CSP headers are duplicated and missing report-uri
Pull Request:
Severity:
Minor - inconvenience | misleading | easy workaround
UX impact:
User visibility:
Effort required:
Very Small
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
No
Description
- The
Content-Security-PolicyandX-Content-Security-Policyare duplicated (there are 4 CSP headers in total), but should not, even if it works as expected - The
report-urihas been removed so we no longer have violation reports logged into the webapp, but we need them
Updated by Clark ANDRIANASOLO 3 months ago
- Related to Bug #24016: Implement CSP strict headers with nonce and apply to healtcheck page added
Updated by Clark ANDRIANASOLO 3 months ago
- Status changed from New to In progress
Updated by Clark ANDRIANASOLO 3 months ago
- Status changed from In progress to Pending technical review
- Assignee changed from Clark ANDRIANASOLO to François ARMAND
- Pull Request set to https://github.com/Normation/rudder/pull/5364
Updated by Clark ANDRIANASOLO 3 months ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder|d5652b09db75bd6a0f08c8b770b8cd3b9e86ddd4.
Updated by Vincent MEMBRÉ about 1 month ago
- Status changed from Pending release to Released
This bug has been fixed in Rudder 8.1.0~beta1 which was released today.
Actions