Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CSP on acc/prd breaks haproxy 503 error page #546

Closed
baszoetekouw opened this issue Sep 19, 2024 · 1 comment · Fixed by #548
Closed

CSP on acc/prd breaks haproxy 503 error page #546

baszoetekouw opened this issue Sep 19, 2024 · 1 comment · Fixed by #548
Milestone
v37

Comments

@baszoetekouw
Copy link
Member

Screenshot 2024-09-19 at 12 53 00

possible solution: allow strict-dynamic CSP and add a hash to the inline styles of the page. See https://content-security-policy.com/hash/ en https://content-security-policy.com/strict-dynamic/
@baszoetekouw baszoetekouw moved this from New to Todo in SRAM development Sep 19, 2024
@mrvanes
Copy link
Contributor

mrvanes commented Sep 25, 2024

I'm not sure what the problem is, nor how to reproduce locally? When I stop SBS, haproxy shows the nice 503 on my local deploy, just like the example above?

@mrvanes mrvanes linked a pull request Sep 25, 2024 that will close this issue
Fix haproxy 503 CSP challenges #548
Merged
@baszoetekouw baszoetekouw added this to the v37 milestone Sep 30, 2024
@sram-deploy-tools-automation sram-deploy-tools-automation bot moved this from To be deployed to Done in SRAM development Oct 17, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
SRAM development
Status: Done
Milestone
v37
Development

Successfully merging a pull request may close this issue.

Fix haproxy 503 CSP challenges SURFscz/SRAM-deploy
2 participants
@baszoetekouw @mrvanes