[jira] [Resolved] (ATLAS-5019) Add header in atlas login.jsp page

Paresh Devalia (Jira) Tue, 07 Oct 2025 22:26:04 -0700


     [ 
https://issues.apache.org/jira/browse/ATLAS-5019?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Paresh Devalia resolved ATLAS-5019.
-----------------------------------
    Fix Version/s: 3.0.0
       Resolution: Fixed

> Add header in atlas login.jsp page
> ----------------------------------
>
>                 Key: ATLAS-5019
>                 URL: https://issues.apache.org/jira/browse/ATLAS-5019
>             Project: Atlas
>          Issue Type: Bug
>            Reporter: Paresh Devalia
>            Assignee: Paresh Devalia
>            Priority: Major
>             Fix For: 3.0.0
>
>          Time Spent: 1h 50m
>  Remaining Estimate: 0h
>
> Currently, Apache Atlas does not include essential HTTP security headers 
> login.jsp page. This can expose the application to common web vulnerabilities.
>  * {{X-Frame-Options,}} 
> {{{}X-Content-Type-Options,{}}}{{{}X-XSS-Protection,{}}} 
> {{Content-Security-Policy}}
>  * In addition to these defaults, support is also added to configure *custom 
> HTTP headers* via the {{properties}} file using the {{atlas.headers.*}} 
> prefix. This allows users to define additional response headers as needed 
> without changing the codebase or override the header.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (ATLAS-5019) Add header in atlas login.jsp page

Reply via email to