User story #26951: Plugins need CSP to be strict in Rudder but disabled in plugin pages - Rudder - Issue Tracker

Actions

Copy link

User story #26951

closed

User story #26934: Enable CSP on all pages and add tag to exclude a page

Plugins need CSP to be strict in Rudder but disabled in plugin pages

Added by Clark ANDRIANASOLO 2 months ago. Updated 8 days ago.

Status:

Released

Priority:

N/A

Assignee:

Clark ANDRIANASOLO

Category:

Web - Maintenance

Target version:

9.0.0~alpha1

Pull Request:

https://github.com/Normation/rudder-p...

UX impact:

Suggestion strength:

User visibility:

First impressions of Rudder

Effort required:

Small

Name check:

To do

Fix check:

To do

Regression:

Description

In parent, strict CSP headers are enabled on all pages and need to be present for scripts added by some plugins, e.g. to display something from the plugin the login page, or in the navbar.

But the plugins pages themselves have additional pages, which can be later migrated to include CSP headers

Related issues 1 (0 open — 1 closed)

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Rudder

Custom queries

User story #26951

Plugins need CSP to be strict in Rudder but disabled in plugin pages

Updated by Clark ANDRIANASOLO 2 months ago

Updated by Clark ANDRIANASOLO 2 months ago

Updated by Clark ANDRIANASOLO about 2 months ago

Updated by Clark ANDRIANASOLO 14 days ago

Updated by Alexis Mousset 8 days ago

Updated by Alexis Mousset 8 days ago

Updated by Alexis Mousset 8 days ago

Updated by Alexis Mousset 8 days ago