How to edit content security policy when deploying with Helm

I'm running Apache Solr 9.8.0 on Amazon EKS using Helm. I want to modify the security-related HTTP headers that Solr sets—specifically, I want to remove 'unsafe-inline' from the Content-Security-Policy (CSP) header. How can I achieve this?

Currently, the CSP is defined in the Jetty configuration (likely in jetty.yaml or jetty-rewrite.xml) with a rule like this:


<Call name="addRule">
  <Arg>
    <New class="org.eclipse.jetty.rewrite.handler.HeaderPatternRule">
      <Set name="pattern">/solr/*</Set>
      <Set name="name">Content-Security-Policy</Set>
      <Set name="value">
        default-src 'none'; base-uri 'none'; connect-src 'self'; form-action 'self'; font-src 'self'; 
        frame-ancestors 'none'; img-src 'self' data:; media-src 'self'; 
        style-src 'self' 'unsafe-inline'; script-src 'self'; worker-src 'self';
      </Set>
    </New>
  </Arg>
</Call>

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

How to edit content security policy when deploying with Helm #789

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

How to edit content security policy when deploying with Helm #789

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions