Bug #25310: Implement missing CSRF mitigation headers for Rules XHR - Rudder - Issue Tracker

Actions

Copy link

Bug #25310

closed

Implement missing CSRF mitigation headers for Rules XHR

Added by Clark ANDRIANASOLO 2 months ago. Updated about 1 month ago.

Status:

Released

Priority:

N/A

Assignee:

Clark ANDRIANASOLO

Category:

Security

Target version:

8.2.0~beta1

Pull Request:

https://github.com/Normation/rudder/p...

Severity:

Major - prevents use of part of Rudder | no simple workaround

UX impact:

It bothers me each time

User visibility:

First impressions of Rudder

Effort required:

Very Small

Priority:

140

Name check:

To do

Fix check:

To do

Regression:

Description

There were still some endpoints in the Rules page that do not have the headers (missed in #24897)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

Bug #25310

Implement missing CSRF mitigation headers for Rules XHR

Updated by Clark ANDRIANASOLO 2 months ago

Updated by Alexis Mousset 2 months ago

Updated by Alexis Mousset 2 months ago

Updated by Alexis Mousset 2 months ago

Updated by Alexis Mousset 2 months ago

Updated by Vincent MEMBRÉ about 1 month ago