This commit is intended to hide CherryPy name and version, from HTTP header 'Server...

author anurag <anurag@localhost.localdomain>

Mon, 20 Apr 2020 23:13:07 +0000 (04:43 +0530)

committer anurag <anurag@localhost.localdomain>

Tue, 21 Apr 2020 15:01:04 +0000 (20:31 +0530)
author anurag <anurag@localhost.localdomain>
Mon, 20 Apr 2020 23:13:07 +0000 (04:43 +0530)
committer anurag <anurag@localhost.localdomain>
Tue, 21 Apr 2020 15:01:04 +0000 (20:31 +0530)
diff --git a/qa/tasks/mgr/dashboard/test_requests.py b/qa/tasks/mgr/dashboard/test_requests.py

index 0d9f8d9ba83697042c63c18f4b0c1bbc30bd8b0f..25460914866ad21c96e864f7724b4b04476ae74f 100644 (file)
--- a/qa/tasks/mgr/dashboard/test_requests.py
+++ b/qa/tasks/mgr/dashboard/test_requests.py
@@ -21,3 +21,9 @@ class RequestsTest(DashboardTestCase):
          self.assertHeaders({
              'Content-Type': 'application/json',
          })
+
+    def test_server(self):
+        self._get('/api/summary')
+        self.assertHeaders({
+            'server': 'Ceph-Dashboard'
+        })
+\ No newline at end of file
diff --git a/src/pybind/mgr/dashboard/services/auth.py b/src/pybind/mgr/dashboard/services/auth.py

index d829362e63d3c9e2312dd54b6d8021fc1f23cac2..955b3f9cc6fb08ea247f7e5cc79caab78c63c9fc 100644 (file)
--- a/src/pybind/mgr/dashboard/services/auth.py
+++ b/src/pybind/mgr/dashboard/services/auth.py
@@ -15,6 +15,10 @@ import jwt
  from .access_control import LocalAuthenticator, UserDoesNotExist
  from .. import mgr
  
+cherrypy.config.update({
+    'response.headers.server': 'Ceph-Dashboard'
+    })
+
  
  class JwtManager(object):
      JWT_TOKEN_BLACKLIST_KEY = "jwt_token_black_list"
author	anurag <anurag@localhost.localdomain>
	Mon, 20 Apr 2020 23:13:07 +0000 (04:43 +0530)
committer	anurag <anurag@localhost.localdomain>
	Tue, 21 Apr 2020 15:01:04 +0000 (20:31 +0530)
qa/tasks/mgr/dashboard/test_requests.py		patch \| blob \| history
src/pybind/mgr/dashboard/services/auth.py		patch \| blob \| history