Uploaded image for project: 'Openmeetings'
  1. Openmeetings
  2. OPENMEETINGS-2247

CSP should be re-worked

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 5.0.0-M4
    • 5.0.0-M4
    • Builds, UI
    • None

    Description

      Previously CSP was implemented via
      header.csp.frame.options and header.content.security.policy
      https://openmeetings.apache.org/GeneralConfiguration.html

      Above setting were applied here https://github.com/apache/openmeetings/blob/5.0.0-M3/openmeetings-web/src/main/java/org/apache/openmeetings/web/app/Application.java#L244

      This should be re-worked

      Attachments

        1. image-2020-04-17-14-37-11-501.png
          333 kB
          Sebastian Wagner
        2. image-2020-04-17-14-59-08-307.png
          80 kB
          Sebastian Wagner
        3. image-2020-04-17-15-16-37-187.png
          127 kB
          Sebastian Wagner

        Issue Links

          Activity

            People

              solomax Maxim Solodovnik
              solomax Maxim Solodovnik
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0h
                  0h
                  Logged:
                  Time Spent - 20m
                  20m