fix: CSP issues on dashboard recipe

Chakravarthy7102 commented 4 months ago

Summary of change

Introduces a new optional boolean parameter named overrideCSPHeaders to the dashboard config. This allows users to bypass the pre-defined Content Security Policy (CSP) configuration.

TODO

[ ] Add this information to docs in dashboard CSP section.

Related issues

Link to issue1 here
Link to issue1 here

Test Plan

Manually tested with a demo app.

Documentation changes

(If relevant, please create a PR in our docs repo, or create a checklist here highlighting the necessary changes)

Checklist for important updates

[x] Changelog has been updated
[ ] coreDriverInterfaceSupported.json file has been updated (if needed)
- Along with the associated array in lib/ts/version.ts
[ ] frontendDriverInterfaceSupported.json file has been updated (if needed)
[x] Changes to the version if needed
- In package.json
- In package-lock.json
- In lib/ts/version.ts
[x] Had run npm run build-pretty
[x] Had installed and ran the pre-commit hook
[ ] If new thirdparty provider is added,
- [ ] update switch statement in recipe/thirdparty/providers/configUtils.ts file, createProvider function.
- [ ] add an icon on the user management dashboard.
[x] Issue this PR against the latest non released version branch.
- To know which one it is, run find the latest released tag (git tag) in the format vX.Y.Z, and then find the latest branch (git branch --all) whose X.Y is greater than the latest released tag.
- If no such branch exists, then create one from the latest released branch.
[ ] If have added a new web framework, update the add-ts-no-check.js file to include that
[ ] If added a new recipe / api interface, then make sure that the implementation of it uses NON arrow functions only (like someFunc: function () {..}).
[ ] If added a new recipe, then make sure to expose it inside the recipe folder present in the root of this repo. We also need to expose its types.

Remaining TODOs for this PR

[ ] Item1
[ ] Item2

netlify[bot] commented 4 months ago

Deploy Preview for astounding-pegasus-21c111 canceled.

Name	Link
Latest commit	2134a90759cfd0d1be45aed0cbf7b6c4b949a0c8
Latest deploy log	https://app.netlify.com/sites/astounding-pegasus-21c111/deploys/65d5ce9f84952a00073abb11

netlify[bot] commented 4 months ago

Deploy Preview for precious-marshmallow-968a81 canceled.

Name	Link
Latest commit	2134a90759cfd0d1be45aed0cbf7b6c4b949a0c8
Latest deploy log	https://app.netlify.com/sites/precious-marshmallow-968a81/deploys/65d5ce9f47f45d00082a4093

rishabhpoddar commented 4 months ago

I would also like to see how the frontend dashboard displays the message to the user to enable this boolean

supertokens / supertokens-node