Bug 1197764

Summary: Red Hat Access functionality broken due to Content Security Policy configuration
Product: Red Hat Satellite Reporter: Lindani Phiri <lphiri>
Component: WebUIAssignee: Lindani Phiri <lphiri>
WebUI sub component: Foreman QA Contact: Kedar Bidarkar <kbidarka>
Status: CLOSED ERRATA Docs Contact:
Severity: high    
Priority: unspecified CC: bbuckingham, bkearney, cwelton, jhutar, kbidarka, kroberts
Version: 6.1.0Keywords: Triaged
Target Milestone: Unspecified   
Target Release: Unused   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-08-12 05:28:17 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Lindani Phiri 2015-03-02 14:34:51 UTC 
Description of problem:
The Red Hat Access functionality (KB search, Case management etc) no longer works because the Satellite 6 does not whitelist *redhat.com as a connection destination. 

Version-Release number of selected component (if applicable):

Satellite 6.1

How reproducible:

Every time

Steps to Reproduce:
1. Log into Satellite UI
2. Navigate to any menu in the Red Hat Access menu in the top right corner
3. Attempt to login into the customer portal

Actual results:
Login always fails. 
Javascript console indicates that connection to Red Hat is being blocked 
due to CSP policy:
Content Security Policy: The page's settings blocked the loading of a resource at https://api.access.redhat.com/rs/users/current?redhat_client=foreman_plugin_satellite_0.0.7 ("connect-src https://tongaman.usersys.redhat.com ws: wss:").

Expected results:

Connection to *.redhat.com should be allowed

Additional info:

I have already experimented with a fix that requires changes only in the Red Hat Access plugin
Comment 1 RHEL Program Management 2015-03-03 05:21:55 UTC 
Since this issue was entered in Red Hat Bugzilla, the release flag has been
set to ? to ensure that it is properly evaluated for this release.
Comment 3 Lindani Phiri 2015-03-05 19:38:51 UTC 
Fix submitted for next 6.1 beta build
Comment 4 Lindani Phiri 2015-03-06 21:10:37 UTC 
*** Bug 1192325 has been marked as a duplicate of this bug. ***
Comment 6 Kedar Bidarkar 2015-03-16 13:07:57 UTC 
We can now access all the links related to redhat access.

VERIFIED with sat6.1 Beta snap6 compose2.
Comment 7 Lindani Phiri 2015-05-13 00:52:15 UTC 
*** Bug 1192328 has been marked as a duplicate of this bug. ***
Comment 8 Bryan Kearney 2015-08-11 13:26:34 UTC 
This bug is slated to be released with Satellite 6.1.
Comment 9 errata-xmlrpc 2015-08-12 05:28:17 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHSA-2015:1592