Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement Content Security Policy #2760

Closed
alexec opened this issue Apr 20, 2020 · 1 comment · Fixed by #2971
Closed

Implement Content Security Policy #2760

alexec opened this issue Apr 20, 2020 · 1 comment · Fixed by #2971
Assignees
@alexec
Labels
area/server area/ui type/feature Feature request type/security Security related

Comments

@alexec
Copy link
Contributor

alexec commented Apr 20, 2020

Should we enable this?

Contra

Argo CD does not implement this.

https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
@alexec alexec added type/feature Feature request type/security Security related labels Apr 20, 2020
@alexec alexec changed the title Content Security Policy Implement Content Security Policy Apr 20, 2020
@alexec
Copy link
Contributor Author

alexec commented Apr 20, 2020

@jannfis thoughts?

@alexec alexec mentioned this issue Apr 24, 2020
Closed
@alexec alexec self-assigned this May 7, 2020
alexec added a commit to alexec/argo-workflows that referenced this issue May 7, 2020
@alexec
feat(ui) Enable CSP, HSTS, X-Frame-Options. Fixes argoproj#2760, argo…
dd40d05 
…proj#1376, argoproj#2761
@alexec alexec mentioned this issue May 7, 2020
Merged
6 tasks
alexec added a commit that referenced this issue May 13, 2020
@alexec
feat(ui): Enable CSP, HSTS, X-Frame-Options. Fixes #2760, #1376, #2761 (
9f86a4e 
#2971)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@alexec alexec

Labels
area/server area/ui type/feature Feature request type/security Security related
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

feat(ui): Enable CSP, HSTS, X-Frame-Options. Fixes #2760, #1376, #2761 alexec/argo-workflows
2 participants
@alexec @agilgur5