Actions
Bug #27314
open
CSP violation in api accounts custom ACL selection
Pull Request:
Severity:
Major - prevents use of part of Rudder | no simple workaround
UX impact:
User visibility:
Effort required:
Very Small
Priority:
0
Name check:
To do
Fix check:
To do
Regression:
No
Description
There are CSP violations due to enabling CSP in all pages in #26934, but some specific AJAX execution and HTML rendering was missing in the API accounts page when editing custom ACLs :.png)
Files
Updated by Clark ANDRIANASOLO about 21 hours ago
- Related to User story #26951: Plugins need CSP to be strict in Rudder but disabled in plugin pages added
- Related to User story #26934: Enable CSP on all pages and add tag to exclude a page added
Updated by Clark ANDRIANASOLO about 21 hours ago
- Status changed from New to In progress
Updated by Clark ANDRIANASOLO about 21 hours ago
- Status changed from In progress to Pending technical review
- Assignee changed from Clark ANDRIANASOLO to Véronique HAYAERT
- Pull Request set to https://github.com/Normation/rudder-plugins/pull/873
Updated by Clark ANDRIANASOLO about 21 hours ago
- Status changed from Pending technical review to Pending release
Applied in changeset rudder:rudder-plugins|e740ceb78aefa8c4caeabb1db628fc32c0dc5c47.
Actions