Bug 2237376 - [IBM] [Ceph Dashboard]: Allow CORS for an unauthorized access [NEEDINFO]
Summary: [IBM] [Ceph Dashboard]: Allow CORS for an unauthorized access
Keywords:
Status: VERIFIED
Alias: None
Product: Red Hat Ceph Storage
Classification: Red Hat Storage
Component: Ceph-Dashboard
Version: 5.3
Hardware: Unspecified
OS: Unspecified
unspecified
high
Target Milestone: ---
: 6.1z2
Assignee: Nizamudeen
QA Contact: Sayalee
Akash Raj
URL:
Whiteboard:
Depends On:
Blocks: 2235257
TreeView+ depends on / blocked
 
Reported: 2023-09-05 07:30 UTC by Nizamudeen
Modified: 2023-09-12 05:38 UTC (History)
6 users (show)

Fixed In Version: ceph-17.2.6-131.el9cp
Doc Type: No Doc Update
Doc Text:
Clone Of:
Environment:
Last Closed:
Embargoed:
akraj: needinfo? (nizamudeena)

Attachments (Terms of Use)


Links
System ID Private Priority Status Summary Last Updated
Red Hat Issue Tracker RHCEPH-7314 0 None None None 2023-09-05 07:31:38 UTC
Red Hat Issue Tracker RHCSDASH-1076 0 None None None 2023-09-05 07:31:42 UTC

Description Nizamudeen 2023-09-05 07:30:04 UTC 
This bug was initially created as a copy of Bug #2235563

I am copying this bug because: I need to deliver this fix in 6.1z2 as well



Description of problem:
Try to access the dashboard api from a different origin with an invalid token and see that there is no Access-Control-Allow-Origin header set in the response header. This is needed for the IBM SI to catch error like 401 on their code.

Version-Release number of selected component (if applicable):


How reproducible:


Steps to Reproduce:
1.
2.
3.

Actual results:


Expected results:


Additional info:
Comment 1 RHEL Program Management 2023-09-05 07:30:15 UTC 
Please specify the severity of this bug. Severity is defined here:
https://bugzilla.redhat.com/page.cgi?id=fields.html#bug_severity.
Note You need to log in before you can comment on or make changes to this bug.