-
Notifications
You must be signed in to change notification settings - Fork 21
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
allow api-session-auth feature flag to be set #279
Comments
@pdurbin would also like |
donsizemore
pushed a commit
that referenced
this issue
May 19, 2023
donsizemore
pushed a commit
that referenced
this issue
May 25, 2023
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
There's a new feature flag called api-session-auth that I'd like to set to "true" or "1" so that the SPA can log in to the backend: http://preview.guides.gdcc.io/en/develop/installation/config.html#feature-flags
It should definitely be unset or explicitly off by default, because it's a potential security risk. (This is just for demos until we have bearer token support for the backend and the frontend.)
Please let me know if we can add this. Thanks! ❤️
The text was updated successfully, but these errors were encountered: