Uploaded image for project: 'Red Hat Fuse'
  1. Red Hat Fuse
  2. ENTESB-18364

Hawtio - CSP issues when using Hawtio with Keycloak

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Major
    • fuse-7.12-GA
    • fuse-7.10-GA
    • Hawtio
    • None

    Description

       Raised by jreagan@redhat.com from SA for AMQ.

      https://github.com/hawtio/hawtio/issues/2720

      Getting the following error when trying to use Keycloak with the Apache Artemis Hawtio console:

      Refused to load the script 'https://bearkat.local:8443/auth/js/keycloak.js?_=1641928811317' because it violates the following Content Security Policy directive: "script-src 'self' bearkat.local:8443 'unsafe-inline' 'unsafe-eval'". Note that 'script-src-elem' was not explicitly set, so 'script-src' is used as a fallback.

      No issue when using http (port 8080). But I see it when I try to enable TLS.

      Attachments

        Activity

          People

            rhn-support-tasato Tadayoshi Sato
            rhn-support-tasato Tadayoshi Sato
            Dusan Uradnik Dusan Uradnik
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: