Uploaded image for project: 'Jira Data Center'
  1. Jira Data Center
  2. JRASERVER-78658

Add Support for cross-origin resource sharing HTTP headers

XMLWordPrintable

    • Icon: Suggestion Suggestion
    • Resolution: Unresolved
    • None
    • REST API
    • None
    • We collect Jira feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

      Problem Definition

      Jira do not currently support cross-origin resource sharing and isolation policies like the following:

      • Cross-Origin-Embedder-Policy
      • Cross-Origin-Resource-Policy
      • Cross-Origin-Opener-Policy

      These headers are part of modern web security practices designed to mitigate risks associated with cross-origin requests, such as cross-site script inclusion (XSSI) and data leaks between origins.

      Suggested Solution

      Implement an option to configure these security headers, we currently have the following Security headers

      Workaround

      none

            [JRASERVER-78658] Add Support for cross-origin resource sharing HTTP headers

            There are no comments yet on this issue.

              Unassigned Unassigned
              afd2063a99c7 Vamshi R
              Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: