This allows the client website to serve CORS headers and updates the server API CSP headers served during local development to include the client website.
This allows sharing resources between the server API (http://localhost:3000) and client website (http://localhost:8082) origins, and allows CSS and JS assets to load correctly while viewing the admin dashboard locally during development.
To Do
Gulp tasks should be updated to allow watching for changes while serving the client website locally. I need to look into BrowserSync's API to get the implementation right. This will be handled in #107.
Dependencies
I swapped out gulp-connect for browser-sync, for serving the client website locally with CORS headers. I also bumped bcrypt up a major version which fixes security vulnerabilities without any API breaking changes.
Summary
This allows the client website to serve CORS headers and updates the server API CSP headers served during local development to include the client website.
This allows sharing resources between the server API (
http://localhost:3000) and client website (http://localhost:8082) origins, and allows CSS and JS assets to load correctly while viewing the admin dashboard locally during development.To Do
Gulp tasks should be updated to allow watching for changes while serving the client website locally. I need to look into BrowserSync's API to get the implementation right. This will be handled in #107.
Dependencies
I swapped out
gulp-connectforbrowser-sync, for serving the client website locally with CORS headers. I also bumpedbcryptup a major version which fixes security vulnerabilities without any API breaking changes.Issue(s)
Closes #105
Changelog
Added
Changed
gulp-connectforbrowser-sync. [#105]Security
bcrypta major version.Checklist