Uploaded image for project: 'Hippo CMS'
  1. Hippo CMS
  2. CMS-14998

Wicket migration documentation

    XMLWordPrintable

Details

    • Task
    • Status: Closed
    • Normal
    • Resolution: Done
    • None
    • 15.0.0
    • None
    • None
    • Nova
    • Team Nova sprint 282, Team Nova Sprint 283

    Description

      Scope

      • Do users need to configure anything extra with this migration?
        • The domain(s) of OpenUI extension(s) should be configured in the Content Security Policy
      • Do we have captured how users can make use of the migration to enable XSS protection?
        • The Content Security Policy is configured in the repository at /hippo:configuration/hippo:modules/application-settings/hippo:moduleconfig/content-security-policy
        • We have not enabled the usage of a nonce for <script> and <style> elements because of "legacy" libraries like ExtJS
      • Any other documentation that we need to write down?
        • See the attached .md file

      Attachments

        Activity

          People

            abogaart Arthur Bogaart
            dionescu Daniel Ionescu
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: