Project

General

Profile

Actions
Copy link

Bug #16566

closed

secure headers should allow inline images in css

Added by Tomer Brisker almost 9 years ago. Updated about 7 years ago.

Status:
Closed
Priority:
Normal
Assignee:
Tomer Brisker
Category:
Web Interface
Target version:
1.14.0
Difficulty:
Triaged:
Bugzilla link:
Pull request:
https://github.com/theforeman/foreman/pull/3850
Fixed in Releases:
Found in Releases:
Nightly
Red Hat JIRA:

Description

current security headers prevent images from loading images inlined in css, leading to errors such as:

jquery.js?27d9:10220 Refused to load the image 'data:image/gif;base64,R0lGODlhEAAQAPQAAP///wAAAPDw8IqKiuDg4EZGRnp6egAAAFhYW…zsPgMCEAY7Cg04Uk48LAsDhRA8MVQPEF0GAgqYYwSRlycNcWskCkApIyEAOwAAAAAAAAAAAA==' because it violates the following Content Security Policy directive: "img-src 'self' *.gravatar.com".

Related issues 1 (0 open1 closed)

Related to Foreman - Feature #9117: Update to secure_headers 3.xClosedTomer Brisker01/26/2015Actions
Actions
Copy link
 #1

Updated by The Foreman Bot almost 9 years ago

  • Status changed from Assigned to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/3850 added
Actions
Copy link
 #2

Updated by Tomer Brisker almost 9 years ago

Actions
Copy link
 #3

Updated by Dominic Cleal almost 9 years ago

  • Translation missing: en.field_release set to 189
Actions
Copy link
 #4

Updated by Anonymous almost 9 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions
Copy link
 #5

Updated by Daniel Lobato Garcia almost 9 years ago

  • Target version set to 1.5.2
Actions
Copy link

Also available in: Atom PDF