Bug 2235563

Summary: [IBM] [Ceph Dashboard]: Allow CORS for an unauthorized access
Product: [Red Hat Storage] Red Hat Ceph Storage Reporter: Nizamudeen <nia>
Component: Ceph-DashboardAssignee: Nizamudeen <nia>
Status: VERIFIED --- QA Contact: Sayalee <saraut>
Severity: high Docs Contact: Anjana Suparna Sriram <asriram>
Priority: unspecified    
Version: 5.3CC: ceph-eng-bugs, cephqe-warriors, jcaratza, kdreyer, tserlin, vereddy
Target Milestone: ---Keywords: External
Target Release: 5.3z6   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: ceph-16.2.10-218.el8cp Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Nizamudeen 2023-08-29 04:56:06 UTC 
Description of problem:
Try to access the dashboard api from a different origin with an invalid token and see that there is no Access-Control-Allow-Origin header set in the response header. This is needed for the IBM SI to catch error like 401 on their code.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 RHEL Program Management 2023-08-29 04:56:16 UTC 
Please specify the severity of this bug. Severity is defined here:
https://bugzilla.redhat.com/page.cgi?id=fields.html#bug_severity.