Rendering a pdf file into an ftl page (howto)

maxp · November 22, 2021, 12:52pm

Hi all,

I’m trying to embed a pdf from an https external site into a keycloak’s ftl page. The Loading of this pdf is refused because of a security violation related to the
Content Security Policy directive: "object-src ‘none’.

Did somebody have already done something similar? Just consider that I tried to apply meta tag to bypass the security issue but

it seems there is something other, over the page, that is blocking the page rendering
anyway, it seems to be too restrictive as there are many other resources to load ‘by default’ and it could be a hard job to filter all of them

maxp · November 22, 2021, 3:49pm

Ok,
a first solution (kind of) can be found at the Realm level by changing Realm Settings :: Security Defenses :: Content-Security-policy field

Topic		Replies	Views
[Bug ?] Bad prefix of url in document sent to client Configuring the server admin-console	1	1808	May 24, 2021
Help CSP Error when behind caddy (reverse-proxy) Getting advice	1	2519	May 11, 2020
Can't load https://www.google.com and Recaptcha	0	895	March 1, 2022
Using Keycloak with Electron Securing applications	1	2521	April 13, 2021
Welcome-content redirect in Keycloak 17.0.0 (Quarkus) Configuring the server	0	237	March 7, 2023

Rendering a pdf file into an ftl page (howto)

Related Topics