Closed Bug 1342113 Opened 7 years ago Closed 7 years ago

[PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org

Categories

(Webtools :: Pulse, defect)

Product:
Webtools
Component:
Pulse
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: emorley, Unassigned)

References

Details

https://observatory.mozilla.org/analyze.html?host=pulseguardian.mozilla.org

Current score is an F.

Will file dep bugs for obvious quick wins.
Depends on: 1342116
Depends on: 1342123
Depends on: 1342128
Depends on: 1342131
Up from F to D. :)
Summary: [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently F) → [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently D)
Up to B-!
Summary: [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently D) → [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently B-)
Summary: [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently B-) → [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently B)
With OIDC auth now working correctly, and one small CSP change (https://github.com/mozilla-services/pulseguardian/commit/991686eb9b867e0b637d1c64e61d6c221a829750), HTTP Observatory now gives PulseGuardian an A+ rating. \o/

Apparently there's even more we can do ("The use of Referrer Policy can help protect the privacy of your users by restricting the information that browsers provide when accessing resources kept on other sites"), but given we can't get a higher grade, I'm closing this bug out.
Status: NEW → RESOLVED
Closed: 7 years ago
Resolution: --- → FIXED
Summary: [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org (currently B) → [PulseGuardian] Improve HTTP observatory score for pulseguardian.mozilla.org
You need to log in before you can comment on or make changes to this bug.