You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@impala.apache.org by "Andrew Sherman (Jira)" <ji...@apache.org> on 2022/01/26 00:51:00 UTC

[jira] [Resolved] (IMPALA-11078) Webui should return a Content-Security-Policy header

     [ https://issues.apache.org/jira/browse/IMPALA-11078?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Andrew Sherman resolved IMPALA-11078.
-------------------------------------
    Resolution: Fixed

> Webui should return a Content-Security-Policy header
> ----------------------------------------------------
>
>                 Key: IMPALA-11078
>                 URL: https://issues.apache.org/jira/browse/IMPALA-11078
>             Project: IMPALA
>          Issue Type: Bug
>            Reporter: Andrew Sherman
>            Assignee: Andrew Sherman
>            Priority: Major
>
> The Content-Security-Policy header  provides a standard method for website owners to declare approved origins of content that browsers should be allowed to load on that website.  This can help to prevent cross-site scripting (XSS) attacks.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)