Skip to main content
Solved

CSP header was misconfigured as it included unsafe-eval and unsafe-inline values.

  • January 23, 2025
  • 5 replies
  • 66 views
D
Forum|alt.badge.img

We see CSP headers are setup to use unsafe-eval and unsafe-inline values. Is there a way we can disable these headers.

 

we have tried to remove the headers the java scripts were failing. 

Best answer by MegaDrive68k

Hi ​@dboppana! Could you elaborate? Could you provide the steps to reproduce it? Also, did you test on Rundeck 5.8.0? (latest at this moment). Thanks! ​

5 replies

mwalls
Forum|alt.badge.img
  • mwalls
  • Community Manager
  • January 23, 2025

Hi ​@dboppana 

Which urls/pages are you working with? 

D
Forum|alt.badge.img
  • dboppana
  • Author
  • New Member
  • January 24, 2025

After making the change Once I login the home page is not working.

 

Below is the url

https://1.2.3.4:4440/menu/home

mwalls
Forum|alt.badge.img
  • mwalls
  • Community Manager
  • January 24, 2025

Hi ​@dboppana.

 

Is this a Rundeck install? Which version are you working with? The community version or the Enterprise version? 

D
Forum|alt.badge.img
  • dboppana
  • Author
  • New Member
  • January 29, 2025

We are using community edition and version is 5.1.1

 

 

M
Forum|alt.badge.img
  • MegaDrive68k
  • Dutonian
  • Answer
  • January 29, 2025

Hi ​@dboppana! Could you elaborate? Could you provide the steps to reproduce it? Also, did you test on Rundeck 5.8.0? (latest at this moment). Thanks! ​

Terms & ConditionsCookie settingsAccessibility statement