anmolnar commented on issue #843: HBASE-23303 Add security headers to REST server/info page URL: https://github.com/apache/hbase/pull/843#issuecomment-557153134 @petersomogyi I added some more details to the description of the PR. What's your concern exactly? Would you please be more specific? There's one more though that I'm planning to add (sorry @brfrn169 you already reviewed) to be complete: `Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'` which > Controls resources the user agent is allowed to load for a given page.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] With regards, Apache Git Services
