Project

General

Profile

Actions

Bug #25352

closed

Event log rollback action is prevented from CSP headers

Added by Clark ANDRIANASOLO 4 months ago. Updated 3 months ago.

Status:
Released
Priority:
N/A
Category:
API
Target version:
Severity:
Major - prevents use of part of Rudder | no simple workaround
UX impact:
It bothers me each time
User visibility:
Operational - other Techniques | Rudder settings | Plugins
Effort required:
Small
Priority:
79
Name check:
To do
Fix check:
To do
Regression:
No

Description

When migrating scripts for adding CSP headers to the "Event logs" page, the actions buttons for rollback have not been tested.
Also "Show raw technical details" does not work with a CSP error in the browser.

We need to add nonce to those buttons.


Related issues 1 (0 open1 closed)

Related to Rudder - Bug #25032: Use Content-Security-Policy strict headers in utilities pagesReleasedFrançois ARMANDActions
Actions #1

Updated by Clark ANDRIANASOLO 4 months ago

  • Related to Bug #25032: Use Content-Security-Policy strict headers in utilities pages added
Actions #2

Updated by Clark ANDRIANASOLO 4 months ago

  • Target version set to 8.2.0~beta1
  • Priority changed from 79 to 40
Actions #3

Updated by Clark ANDRIANASOLO 4 months ago

  • Status changed from New to In progress
Actions #4

Updated by Clark ANDRIANASOLO 4 months ago

  • Description updated (diff)
Actions #5

Updated by Clark ANDRIANASOLO 4 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Clark ANDRIANASOLO to Raphael GAUTHIER
  • Pull Request set to https://github.com/Normation/rudder/pull/5836
Actions #6

Updated by Clark ANDRIANASOLO 4 months ago

  • Status changed from Pending technical review to Pending release
Actions #7

Updated by Vincent MEMBRÉ 3 months ago

  • Status changed from Pending release to Released
  • Priority changed from 40 to 79

This bug has been fixed in Rudder 8.2.0~beta1 which was released today.

Actions

Also available in: Atom PDF