CSP prevents access to the backend over http when the frontend accessed via https #2

New Issue

Open

opened 2020-10-16 17:23:48 +00:00 by lenrsmith · 0 comments

lenrsmith commented 2020-10-16 17:23:48 +00:00

Contributor

Copy Link

The content security policy configuration is not complete and it is causing issues when the site is accessed via https. Two things need to happen here:

1. Ember needs to use the same protocol by which it was accessed to issue requests to the backend.
2. The CSP configuration for both frontend and backend need to be completed.

The content security policy configuration is not complete and it is causing issues when the site is accessed via https. Two things need to happen here: 1. Ember needs to use the same protocol by which it was accessed to issue requests to the backend. 2. The CSP configuration for both frontend and backend need to be completed.

lenrsmith self-assigned this 2020-10-16 17:23:55 +00:00

lenrsmith added the

Bug

label 2020-10-16 17:25:51 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

develop

hotfix/user-guide

feature/handle-fetching-commentary-articles

verse-arrow-buttons

feature/user-guide

hotfix/menufix

hotfix/repoint-cors-rules

feature/morphology-tooltips

Labels

Clear labels   

Bug

  

Enhancement

  

Feature request

  

Security related

No Label

Bug

Enhancement

Feature request

Security related

Milestone

Clear milestone

No items

No Milestone

Assignees

Clear assignees

No Assignees

1 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: WycliffeAssociates/en_btr_frontend#2

No description provided.