Shoumi M

icon company IBM India Pvt. Ltd. icon location Bangalore, India icon location Data Scientist @ IBM

Results 5 comments of Shoumi M

[Feature Request]: Implementation Plan for Root Directory

@crivetimihai Could you please review the proposed solution for the root directory and share your feedback?

[Feature Request]: Implementation Plan for Root Directory

@madhav165 @kevalmahajan Could you please review the proposed solution for the root directory and share your feedback?

[Bug]:iFrame context-forge giving error "ancestor violates Content Security Policy directive"

@sunvk the problem is that `X_FRAME_OPTIONS=*` is not a valid value. The security middleware first validates the `X_FRAME_OPTIONS` value. When it sees an invalid value like `*`, it ignores it...

[Bug]:iFrame context-forge giving error "ancestor violates Content Security Policy directive"

@sunvk I ran a quick test with the above config on my end and noticed that `X-Frame-Options: DENY` is still being sent even though `X_FRAME_OPTIONS=""`. I'm preparing a PR that...

[Bug]:iFrame context-forge giving error "ancestor violates Content Security Policy directive"

@sunvk Yes, that's right. Changing from DENY to SAMEORIGIN won't solve the core issue if both domains are different. I'm working on a fix that changes the middleware logic to...