-
Notifications
You must be signed in to change notification settings - Fork 334
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
bug: Some headers are not supported in the response-rewrite plugin #2190
Comments
cc: @Revolyssup |
@leandrocostam We had the same issue. To avoid it you can put: "example.com" instead of "https://example.com" in Content-Security-Policy. It works in the same way |
Yes, that works when you don't have to restrict the load over HTTPS. It's something that we need right now 😞 |
Also, there are cases where you can have the following CSP policy block:
It also breaks the response-rewrite plugin |
We are using the |
Current Behavior
I am trying to add some headers using the response-rewrite plugin in APISIXRoute CRD, but I am facing an error in the APISIX controller. The current pattern doesn't allow header value that contain multiples
:
. A common use case is when you have to add theContent-Security-Policy
header with multiple domains usinghttps://
.Expected Behavior
I should be able to define values for the headers using multiples
:
.Error Logs
ApisixRoute Resource Events
Source: ApisixIngress
Steps to Reproduce
Environment
The text was updated successfully, but these errors were encountered: