Uploaded image for project: 'IMPALA'
  1. IMPALA
  2. IMPALA-11078

Webui should return a Content-Security-Policy header

    XMLWordPrintableJSON

Details

    • Bug
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • None
    • Impala 4.1.0
    • None
    • None
    • ghx-label-1

    Description

      The Content-Security-Policy header provides a standard method for website owners to declare approved origins of content that browsers should be allowed to load on that website. This can help to prevent cross-site scripting (XSS) attacks.

      Attachments

        Issue Links

          causes

          Improvement - An improvement or enhancement to an existing feature or task. IMPALA-11131 Replace 'cnd_cwnd' with 'snd_cwnd' in www/rpcz.tmpl

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is duplicated by

          Improvement - An improvement or enhancement to an existing feature or task. IMPALA-10201 WebUI CSP best practice

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed

          Activity

            People

              asherman Andrew Sherman
              asherman Andrew Sherman
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: