You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues-all@impala.apache.org by "Andrew Sherman (Jira)" <ji...@apache.org> on 2022/01/20 20:17:00 UTC

[jira] [Created] (IMPALA-11078) Webui should return a Content-Security-Policy header

Andrew Sherman created IMPALA-11078:
---------------------------------------

             Summary: Webui should return a Content-Security-Policy header
                 Key: IMPALA-11078
                 URL: https://issues.apache.org/jira/browse/IMPALA-11078
             Project: IMPALA
          Issue Type: Bug
            Reporter: Andrew Sherman
            Assignee: Andrew Sherman


The Content-Security-Policy header  provides a standard method for website owners to declare approved origins of content that browsers should be allowed to load on that website.  This can help to prevent cross-site scripting (XSS) attacks.



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-all-unsubscribe@impala.apache.org
For additional commands, e-mail: issues-all-help@impala.apache.org