system-config

History

Jeremy Stanley fd3d792c8d Use a wildcard regex for storyboard-dev OAuth/CORS With the move to object storage, we no longer have predictable hosting locations for draft builds of opendev/storyboard-webclient changes. Switch the OAuth and CORS ACLs in the storyboard configuration on storyboard-dev.openstack.org to allow webclient builds hosted anywhere, as there should be nothing sensitive we need to protect in that StoryBoard deployment. While here, tighten up the same ACLs for production StoryBoard to just allow its local webclient deployment, reducing the risk of cross-site scripting attacks. Depends-On: https://review.opendev.org/691034 Change-Id: Ie4f5eb49a864848cfa95a3e956e6dbfa122fbb1d	2019-10-25 22:09:44 +00:00
..
site.pp	Use a wildcard regex for storyboard-dev OAuth/CORS	2019-10-25 22:09:44 +00:00

Jeremy Stanley fd3d792c8d Use a wildcard regex for storyboard-dev OAuth/CORS

With the move to object storage, we no longer have predictable
hosting locations for draft builds of opendev/storyboard-webclient
changes. Switch the OAuth and CORS ACLs in the storyboard
configuration on storyboard-dev.openstack.org to allow webclient
builds hosted anywhere, as there should be nothing sensitive we need
to protect in that StoryBoard deployment.

While here, tighten up the same ACLs for production StoryBoard to
just allow its local webclient deployment, reducing the risk of
cross-site scripting attacks.

Depends-On: https://review.opendev.org/691034
Change-Id: Ie4f5eb49a864848cfa95a3e956e6dbfa122fbb1d

2019-10-25 22:09:44 +00:00

site.pp

Use a wildcard regex for storyboard-dev OAuth/CORS

2019-10-25 22:09:44 +00:00