Gerard Lamusse
Gerard Lamusse
No it succeeds to build but comes up when starting directus.
Fully agree, in gcp I added an alert to monitor for such error logs as extensions not loading so I can at least roll back asap
@rijkvanzanten Sorry for tagging you like this, but I just feel this has completely been neglected. Its been almost 5 months now and as far as I can tell is...
Ah. makes sense. Will very much appreciate this Thanks.
That would involve adding another technology to our stack which isn't feasibly for business.
We aren't currently trying to run it from app.windmill.dev but rather from our own static frontend
We using cloud solution. You could exclude the windmill domains if you are worried about security, but still allow all other domains if they are authenticated.
Are you thinking about exploits on the browser side or on app.windmill.dev? Cause both are easily circumventable using cloud functions as you also mentioned using cloudflare as an example. So...
That would only work if using allow credentials on the actual request, which I understand. Would that still be an issue if it could only be triggered with Bearer token?...