* Wed Sep 24 2025 Jean-Philippe Pialasse <jpp@koozali.org> 2.8.0-44.sme

- fix CSP alert on login page [SME: 13176]

e-smith-manager.spec

@@ -4,7 +4,7 @@ Summary: e-smith manager navigation module
 %define name e-smith-manager
 Name: %{name}
 %define version 2.8.0
-%define release 43
+%define release 44
 Version: %{version}
 Release: %{release}%{?dist}
 License: GPL
@@ -24,6 +24,9 @@ Provides: server-manager
 AutoReqProv: no
 
 %changelog
+* Wed Sep 24 2025 Jean-Philippe Pialasse <jpp@koozali.org> 2.8.0-44.sme
+- fix CSP alert on login page [SME: 13176]
+
 * Wed Feb 12 2025 Jean-Philippe Pialasse <jpp@koozali.org> 2.8.0-43.sme
 - update SME11 EOL date and message [SME: 12915]
 

root/etc/e-smith/templates/etc/httpd/conf/httpd.conf/VirtualHosts/27ManagerProxyPass

@@ -37,7 +37,10 @@
         ." 'sha256-bu1Wbll/1+gfjCxVn9czXKc7IhIJRjJgNFdNltH+09c=' 'sha256-MQmv1rIdRtr7sC3167eTWkTNMSq5QzWRPxhOzKUtvKg=' 'sha256-DuDis7gGgnegJBjroiLOJwY+DvfilQsYswIXb6lNE8c=' 'sha256-FengF4xZO+fXC/zBgGGYYPLtc95CEZAk+vS7A9OR64o='  ;"
         ." style-src 'self' https://$virtualHost 'unsafe-hashes' "
         ." 'sha256-ABT3Vs4q5dwUnsKaFzA38LnsL3426dj6CkNKRofyqjA=' 'sha256-upqzRUpu+M2pCK19HHLg5oUeQnpEXij9kojuDNdJnGc=' 'sha256-sa1JolVbZz72+sa0pOWp/LBIoZfF9P1N8Gzy5u3C3Qc=' 'sha256-q9xrwNUn7ieRndtLNP/uNCEBKXjzTzvZv1fddtmMK9w=' ;"
-        ." script-src-attr 'self' https://$virtualHost 'unsafe-hashes' 'sha256-QgFUvJuzASZ+WbF57Vn8eQoWvuBJ78nF7YMraPzQVvg=' \"\n"; 
+        ." script-src-attr 'self' https://$virtualHost 'unsafe-hashes' "
+				." 'sha256-QgFUvJuzASZ+WbF57Vn8eQoWvuBJ78nF7YMraPzQVvg='"
+				." 'sha256-PfZto86YdtwDnXr1I+X5mM0Csdjs8jFCBiSs6dFVR50='" # login getFocus()
+        ." \"\n"; 
 
         $OUT .= "    </Location>\n";
     }