Identity Manager (NetIQ) Discussions

Home

${resource:CF_GenericContent}test

If an answer to your question is correct, click on "Verify Answer" under the "More" button. The answer will now appear with a checkmark. Please be sure to always mark answers that resolve your issue as verified. Your fellow Community members will appreciate it! Learn more.

State Not Answered
Replies replies
2
Subscribers subscribers
30
Views views
157
Users 0 members are here

DNQuery Control Fails after Update from IDM 4.8.7 to 4.10.0

Wolfgang Schreiber OpenText Employee

OpenText Employee

13 days ago

I've been successfully using the DNQuery control on legacy forms for years.

Now, on a fresh IDM 4.10.0 a simple test form that worked correctly on 4.8.7 fails:

Clicking on the control shows the expected query results, however none of the displayed matches can be selected.

Looking at the form debugger this issue seems to result from a security setting (Content Security Policy) that prevents loading/executing the needed scripts. I'm getting the error

Content-Security-Policy: The page’s settings blocked an inline script (script-src-elem) from being executed because it violates the following directive: “script-src 'self'”

The response headers confirm this CSP:

Now, my question: is this an IDM 4.10.0 bug and/or something that I need to fix on my side, e.g., by using some Tomcat (httpHeaderSecurity) filter in web.xml?

Thx

Labels:

Identity Manager

0 Filip Trafisz 12 days ago

The form is new or legacy framework?
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Wolfgang Schreiber 12 days ago in reply to Filip Trafisz

legacy
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Resources

Learning Services

Partner Programs

Privacy

Compliance

Help

Company

Privacy Policy
Terms of Use
Cookies Preferences

Accessibility
Anti-Slavery Statement

Support
Contact Us

Careers
Code of Business Conduct and Ethics

The opinions expressed above are the personal opinions of the authors, not of OpenText. By using this site, you accept the Terms of Use. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.), Hewlett Packard Enterprise Company, or Micro Focus. As of January 31, 2023, the Material is now offered by OpenText, a separately owned and operated company. Any reference to the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks is historical in nature and the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks are the property of their respective owners.