Closed dharezlak closed 7 years ago
I need this merged (eventually) but there are failed checks and the PR is not flagged as ready for review. @dharezlak - could you comment on the security warnings? @mkasztelnik - what's our policy on merging branches which are not cleared by Hakiri?
If relevant, I propose to create a separate issue for the security warnings which refer to server-side vulnerabilities. This PR consisted of only client-side (aka JS) code modifications.
I agree with @dharezlak
JWT token should be passed via the
jwtToken
property. Also,cloudFacadeUrl
,username
androles
properties should be passed as usual. Do not pass thecsrf*
properties as they will take precedence. Accept this merge request if all works well.