Question

1
Replies
129
Views
 Dyan Baur (DyanG412)
Hawaii Medical Service Association

Hawaii Medical Service Association
US
DyanG412 Member since 2013 212 posts
Hawaii Medical Service Association
Posted: October 26, 2016
Last activity: October 28, 2016
Posted: 26 Oct 2016 9:37 EDT
Last activity: 28 Oct 2016 23:59 EDT
Closed
Solved

Security for picture fromexternal URL

what PRPC security configuration affects the retrieval of picture from external URL? Can someone elaborate on the security config on application, othewise I get warning. 

Security
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.

Accepted Solution

Posted: 4 years ago
Posted: 27 Oct 2016 10:48 EDT
Santanu Bhattacherjee (Santanu)
PEGA
Senior Manager - Sales Automation
Pegasystems Inc.
IN

Hi,


A Content Security Policy is a set of directives that control what is displayed in a client's browser. Each browser type and version obeys as much of the Content Security Policy as matches its abilities. If there is a directive that the browser does not understand, it ignores the directive.


You can select an existing Content Security Policy from the options provided, or create a new one by clicking the icon to the right of the field.


In the ContentSecurityPolicy rule you can define or config your policy for image from external URL under the Image soruce option. You can specify allowed websites in this form.


Coming to the security config., you can set the mode to one of two options for what the system does when a policy is violated:

Reject and Report – Enforce the policy (if the content source is not in the correct list, it is not used) and report the violation.

Report Only – Report the violation, but do not enforce the policy.