Project

General

Profile

Actions

Bug #7907

closed

gravatars are now broken

Added by Ohad Levy over 9 years ago. Updated over 5 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
-
Target version:
Difficulty:
Triaged:
Fixed in Releases:
Found in Releases:

Description

after #7805, gravatar external lookups are not allowed, and the following is observed in the logs:

Refused to load the image 'http://secure.gravatar.com/avatar/7dcac275cbd245fbf96a9a6d8739b880?d=mm&s=30' because it violates the following Content Security Policy directive: "img-src 'self' data:".


Related issues 1 (0 open1 closed)

Related to Foreman - Feature #7805: Add several security related HTTP headers - security hardening.ClosedJan Rusnacko10/03/2014Actions
Actions #1

Updated by Ohad Levy over 9 years ago

  • Related to Feature #7805: Add several security related HTTP headers - security hardening. added
Actions #2

Updated by The Foreman Bot over 9 years ago

  • Status changed from New to Ready For Testing
  • Target version set to 1.7.2
  • Pull request https://github.com/theforeman/foreman/pull/1846 added
  • Pull request deleted ()
Actions #3

Updated by Shlomi Zadok over 9 years ago

  • Status changed from Ready For Testing to Closed
  • % Done changed from 0 to 100
Actions #4

Updated by Daniel Lobato Garcia over 9 years ago

  • translation missing: en.field_release set to 21

h3.

Actions

Also available in: Atom PDF