Loading...

XML

Word

Printable

Type: Story
Resolution: Unresolved
Priority: Undefined
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Story Points:
3
Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Link:
4.19 Console Dependencies & Tech Debt
Feature Link:
OCPSTRAT-1844 - TechDebt - OCP Console - Dependency Cleanup
Intelligence Requested:
Market:

Sprint:
OCP Console - Sprint 267, OCP Console - Sprint 268

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

In Console 4.18 we introduced an initial Content Security Policy (CSP) implementation (~~CONSOLE-4263~~).

This affects both Console web application as well as any dynamic plugins loaded by Console. In production, CSP violations are sent to telemetry service for analysis (~~CONSOLE-4272~~).

We need a reliable way to detect new CSP violations as part of our automated CI checks. We can start with testing the main dashboard page of Console and expand to more pages as necessary.

Acceptance criteria:

Update the release repo, so the CSP violation test script is executed as part of Console CI checks.

clones

CONSOLE-4430 Automated Content Security Policy testing of Console pages

Closed

links to

openshift/console#14858: CONSOLE-4437: Add CSP test to the test-prow-e2e.sh

openshift/release#60906: CONSOLE-4437: Automated Content Security Policy testing in CI

Assignee:: Jakub Hadvig

Reporter:: Vojtech Szocs

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2025/01/14 4:11 PM

Updated:: 2025/03/11 2:17 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates