Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Clarify ALLOWED_HOSTS description and usage #1829

Merged
merged 1 commit into from
Oct 20, 2024
Merged

Clarify ALLOWED_HOSTS description and usage #1829

merged 1 commit into from
Oct 20, 2024

Conversation

paskal
Copy link
Collaborator

@paskal paskal commented Oct 20, 2024

This clarifies that the parameter sets CSP 'frame-ancestors' to limit hosts allowed to embed comments. The commit also improves the documentation on how to use ALLOWED_HOSTS with AUTH_SAME_SITE for different setup scenarios.

We might want to change AUTH_SAME_SITE to strong in v2.0 as it works on the subdomain of the same site as well as current Lax option.

@paskal
Clarify ALLOWED_HOSTS description and usage
13784ce 
This clarifies that the parameter sets CSP 'frame-ancestors'
to limit hosts allowed to embed comments. The commit also improves
the documentation on how to use ALLOWED_HOSTS with AUTH_SAME_SITE
for different setup scenarios.

We might want to change AUTH_SAME_SITE to `strong` in v2.0 as it works
on the subdomain of the same site as well as current Lax option.
@paskal paskal marked this pull request as ready for review October 20, 2024 22:15
@paskal paskal requested a review from umputun as a code owner October 20, 2024 22:15
@umputun umputun merged commit dd2cff6 into master Oct 20, 2024
5 checks passed
@umputun umputun deleted the paskal/update_doc branch October 20, 2024 22:17
@github-actions GitHub Actions
Copy link

Pull Request Test Coverage Report for Build 11430056989

Details

  • 0 of 0 changed or added relevant lines in 0 files are covered.
  • 2 unchanged lines in 1 file lost coverage.
  • Overall coverage decreased (-0.03%) to 84.9%
Files with Coverage Reduction New Missed Lines %
backend/app/providers/telegram.go 2 87.88%
Totals Coverage Status
Change from base Build 11429620927: -0.03%
Covered Lines: 5988
Relevant Lines: 7053
💛 - Coveralls

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@umputun umputun Awaiting requested review from umputun umputun is a code owner

Assignees
No one assigned
Labels
documentation
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@paskal @umputun