hasura/graphql-engine
1
0
Fork 0
mirror of https://github.com/hasura/graphql-engine.git synced 2024-12-17 12:31:52 +03:00
Code Issues Projects Releases Wiki Activity
f7fe393bac
graphql-engine/docs/graphql/manual
History
Anon Ray 02d80c9ac6 read cookie while initialising websocket connection (fix #1660) (#1668) 
* read cookie while initialising websocket connection (fix #1660)

* add tests for cookie on websocket init

* fix logic for tests

* enforce cors, and flag to force read cookie when cors disabled

  - as browsers don't enforce SOP on websockets, we enforce CORS policy
  on websocket handshake
  - if CORS is disabled, by default cookie is not read (because XSS
  risk!). Add special flag to force override this behaviour

* add log and forward origin header to webhook

  - add log notice when cors is disabled, and cookie is not read on
  websocket handshake
  - forward origin header to webhook in POST mode. So that when CORS is
  disabled, webhook can also enforce CORS independently.

* add docs, and forward all client headers to webhook
2019-03-04 13:16:53 +05:30
..
api-reference update operators in metadata api docs (#1610) 2019-02-15 18:18:18 +05:30
auth update console permissions (close #1503, #1529, #1567, #1470) (#1605) 2019-02-17 16:06:29 +05:30
business-logic add table of contents to docs pages (#1115) 2018-12-03 17:42:24 +05:30
deployment read cookie while initialising websocket connection (fix #1660) (#1668) 2019-03-04 13:16:53 +05:30
event-triggers rename access-key to admin-secret (close #1347) (#1540) 2019-02-14 15:07:47 +05:30
faq merge docs into main repo (close #397) (#398) 2018-09-11 16:41:24 +05:30
getting-started docs update (#1535) 2019-02-06 12:09:36 +05:30
guides add section for unauthorized role in auth0 guide (#1484) 2019-02-28 15:08:16 +05:30
hasura-cli rename access-key to admin-secret (close #1347) (#1540) 2019-02-14 15:07:47 +05:30
how-it-works add how it works docs section (#1227) 2019-01-04 22:55:48 +05:30
integration merge docs into main repo (close #397) (#398) 2018-09-11 16:41:24 +05:30
introduction merge docs into main repo (close #397) (#398) 2018-09-11 16:41:24 +05:30
migrations update cli install instructions in migrations docs (#1607) 2019-02-17 17:15:34 +05:30
mutations docs update (#1535) 2019-02-06 12:09:36 +05:30
performance merge docs into main repo (close #397) (#398) 2018-09-11 16:41:24 +05:30
queries add fuzzy match search example to custom function docs (#1555) 2019-02-28 15:30:16 +05:30
remote-schemas revert "forward response headers from remote servers (#1664)" 2019-02-28 17:20:56 +05:30
schema rename access-key to admin-secret (close #1347) (#1540) 2019-02-14 15:07:47 +05:30
subscriptions read cookie while initialising websocket connection (fix #1660) (#1668) 2019-03-04 13:16:53 +05:30
troubleshooting add how it works docs section (#1227) 2019-01-04 22:55:48 +05:30
version-control merge docs into main repo (close #397) (#398) 2018-09-11 16:41:24 +05:30
index.rst update docs config + base pages (#1343) 2019-01-08 22:39:05 +05:30