[jira] [Updated] (OFBIZ-12423) Font used with Helveticus theme generates CSP violations
[
https://issues.apache.org/jira/browse/OFBIZ-12423?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jacques Le Roux updated OFBIZ-12423:
Parent: OFBIZ-12276
Issue Type: Sub-task (was: Bug)
> Font used with Helveticus theme generates CSP violations
>
>
> Key: OFBIZ-12423
> URL: https://issues.apache.org/jira/browse/OFBIZ-12423
> Project: OFBiz
> Issue Type: Sub-task
> Components: themes/helveticus
>Affects Versions: Trunk, Upcoming Branch
>Reporter: Pierre Smits
>Priority: Major
> Labels: CSP, trust, usability
>
> The font used by the Helvetica theme generates multiple CSP violations
> according to the inspector in the Firefox browser. See below.
> {code:java}
> Content Security Policy: The page’s settings observed the loading of a
> resource at inline (“default-src”). A CSP report is being sent. 3
> EditTaxAuthority
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“defau
[jira] [Updated] (OFBIZ-12423) Font used with Helveticus theme generates CSP violations
[
https://issues.apache.org/jira/browse/OFBIZ-12423?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jacques Le Roux updated OFBIZ-12423:
Component/s: themes/helveticus
(was: themes)
> Font used with Helveticus theme generates CSP violations
>
>
> Key: OFBIZ-12423
> URL: https://issues.apache.org/jira/browse/OFBIZ-12423
> Project: OFBiz
> Issue Type: Bug
> Components: themes/helveticus
>Affects Versions: Trunk, Upcoming Branch
>Reporter: Pierre Smits
>Priority: Major
> Labels: CSP, trust, usability
>
> The font used by the Helvetica theme generates multiple CSP violations
> according to the inspector in the Firefox browser. See below.
> {code:java}
> Content Security Policy: The page’s settings observed the loading of a
> resource at inline (“default-src”). A CSP report is being sent. 3
> EditTaxAuthority
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“defau
[jira] [Updated] (OFBIZ-12423) Font used with Helveticus theme generates CSP violations
[
https://issues.apache.org/jira/browse/OFBIZ-12423?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Pierre Smits updated OFBIZ-12423:
-
Summary: Font used with Helveticus theme generates CSP violations (was:
Font used with Helvetica theme generates CSP violations)
> Font used with Helveticus theme generates CSP violations
>
>
> Key: OFBIZ-12423
> URL: https://issues.apache.org/jira/browse/OFBIZ-12423
> Project: OFBiz
> Issue Type: Bug
> Components: themes
>Affects Versions: Trunk
>Reporter: Pierre Smits
>Priority: Major
> Labels: CSP, trust, usability
>
> The font used by the Helvetica theme generates multiple CSP violations
> according to the inspector in the Firefox browser. See below.
> {code:java}
> Content Security Policy: The page’s settings observed the loading of a
> resource at inline (“default-src”). A CSP report is being sent. 3
> EditTaxAuthority
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJFQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hK1QNYuDyPw.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA_hJVQNYuDyP7bh.woff2
> (“default-src”). A CSP report is being sent.
> Content Security Policy: The page’s settings observed the loading of a
> resource at
> https://fonts.gstatic.com/s/quicksand/v24/6xKtdSZaM9iE8KbpRA
