Project

General

Profile

Actions
Copy link

Bug #26271

closed

API authorization menu could not open due to CSRF

Added by Clark ANDRIANASOLO 3 months ago. Updated about 2 months ago.

Status:
Released
Priority:
1 (highest)
Assignee:
Alexis Mousset
Category:
Web - UI & UX
Target version:
8.2.5
Pull Request:
https://github.com/Normation/rudder-p...
Severity:
Major - prevents use of part of Rudder | no simple workaround
UX impact:
It bothers me each time
User visibility:
First impressions of Rudder
Effort required:
Very Small
Priority:
140
Name check:
To do
Fix check:
Checked
Regression:
No

Description

The user profile in the menu appears to be clickable but does not show the API token per user menu.

There appears to be a request error due to CSRF headers :

This is due to #25999 in 8.1, and was only applied to 8.2.4.

Files

clipboard-202501290939-oeqbr.png (156 KB) clipboard-202501290939-oeqbr.png Clark ANDRIANASOLO, 2025-01-29 09:40
Actions
Copy link
 #1

Updated by Nicolas CHARLES 3 months ago

  • Priority changed from To review to 1 (highest)
Actions
Copy link
 #2

Updated by Clark ANDRIANASOLO 3 months ago

  • Status changed from New to In progress
Actions
Copy link
 #3

Updated by Clark ANDRIANASOLO 3 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Clark ANDRIANASOLO to Alexis Mousset
  • Pull Request set to https://github.com/Normation/rudder-plugins/pull/791
Actions
Copy link
 #4

Updated by Clark ANDRIANASOLO 3 months ago

  • Status changed from Pending technical review to Pending release
Actions
Copy link
 #5

Updated by Elaad FURREEDAN 2 months ago

  • Fix check changed from To do to Checked
Actions
Copy link
 #6

Updated by Vincent MEMBRÉ about 2 months ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder plugin api-authorizations v8.2.5-2.2

Actions
Copy link

Also available in: Atom PDF