[jira] [Resolved] (IMPALA-11078) Webui should return a Content-Security-Policy header

Andrew Sherman (Jira) Tue, 25 Jan 2022 16:51:35 -0800


     [ 
https://issues.apache.org/jira/browse/IMPALA-11078?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Andrew Sherman resolved IMPALA-11078.
-------------------------------------
    Resolution: Fixed

> Webui should return a Content-Security-Policy header
> ----------------------------------------------------
>
>                 Key: IMPALA-11078
>                 URL: https://issues.apache.org/jira/browse/IMPALA-11078
>             Project: IMPALA
>          Issue Type: Bug
>            Reporter: Andrew Sherman
>            Assignee: Andrew Sherman
>            Priority: Major
>
> The Content-Security-Policy header  provides a standard method for website 
> owners to declare approved origins of content that browsers should be allowed 
> to load on that website.  This can help to prevent cross-site scripting (XSS) 
> attacks.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Resolved] (IMPALA-11078) Webui should return a Content-Security-Policy header

Reply via email to