HTTP headers support #4

thomkrupa · 2019-03-05T10:12:01Z

lightningspirit · 2020-04-24T17:05:37Z

I would like to suggest adding a new option in the plugin to flush all CSP header directives to a file in .cache directory which would allow other plugins to interact with.

For instance, gatsby-plugin-s3 would be able to pick it up and merge with their own params, which would then upload custom Metadata to S3 (then serve Content-Security-Policy as header).

Other plugins such as gatsby-plugin-netlify would be able to implement the same action.

Cross reference to gatsby-uc/gatsby-plugin-s3#144

ryanerringtonatom · 2021-03-04T11:56:57Z

@lightningspirit I agree, this feature would make server-side CSP implementation a lot easier.

Do you know of any alternate solutions/workarounds for a header-based approach?

lightningspirit · 2021-03-06T15:03:55Z

@lightningspirit I agree, this feature would make server-side CSP implementation a lot easier.

Do you know of any alternate solutions/workarounds for a header-based approach?

Actually, after a couple of tests, I ended up not using this plugin at all. Instead, I only used gatsby-uc/gatsby-plugin-s3#144 and decided to hardcode my Content-Security-Policy in plugin's configs for headers.

thomkrupa added the enhancement New feature or request label Mar 5, 2019

thomkrupa self-assigned this Mar 5, 2019

thomkrupa added the help wanted Extra attention is needed label Aug 8, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

HTTP headers support #4

HTTP headers support #4

thomkrupa commented Mar 5, 2019

lightningspirit commented Apr 24, 2020

ryanerringtonatom commented Mar 4, 2021

lightningspirit commented Mar 6, 2021

HTTP headers support #4

HTTP headers support #4

Comments

thomkrupa commented Mar 5, 2019

lightningspirit commented Apr 24, 2020

ryanerringtonatom commented Mar 4, 2021

lightningspirit commented Mar 6, 2021