Dynamically add AWS URLs to CSP on EKS auth page (!80576) · Merge requests · GitLab.org / GitLab

Dominic Couture requested to merge dcouture-eks-csp into master Feb 14, 2022

What does this MR do and why?

There were CSP errors (when the CSP is enabled) when adding a new EKS cluster and authenticating with AWS. This MR adds the required URLs on the AWS EKS auth panel.

Describe in detail what your merge request does and why.

Screenshots or screen recordings

These are strongly recommended to assist reviewers and reduce the time to merge your change.

How to set up and validate locally

Configure Amazon EKS settings for your instance in /admin/application_settings/general#js-eks-settings
Visit /-/clusters/new?provider=aws for your project
Observe that the Content-Security-Policy header contains the expected value for AWS
Test that the Authenticate with AWS button works as expected

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Feb 17, 2022 by Dominic Couture

Dynamically add AWS URLs to CSP on EKS auth page

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports