(arrow-site) branch main updated: [Website] Update .htaccess to use connect-src to enable kapa bot and reCAPTCHA (#627)

Thu, 20 Mar 2025 14:13:00 -0700 

This is an automated email from the ASF dual-hosted git repository.

thisisnic pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow-site.git


The following commit(s) were added to refs/heads/main by this push:
     new 26e5bd1f7fa [Website] Update .htaccess to use connect-src to enable 
kapa bot and reCAPTCHA (#627)
26e5bd1f7fa is described below

commit 26e5bd1f7fa05fce26b897c9a399a9442e19cdbb
Author: Nic Crane <[email protected]>
AuthorDate: Thu Mar 20 17:10:29 2025 -0400

    [Website] Update .htaccess to use connect-src to enable kapa bot and 
reCAPTCHA (#627)
---
 .htaccess | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/.htaccess b/.htaccess
index 09ff3305ff8..9e1a524dba6 100644
--- a/.htaccess
+++ b/.htaccess
@@ -28,5 +28,13 @@ Redirect permanent /ballista 
https://datafusion.apache.org/ballista
 # enable kapa.ai bot (GH-45665)
 # See https://docs.kapa.ai/integrations/understanding-csp-cors and 
https://issues.apache.org/jira/browse/INFRA-26638
 <IfModule mod_headers.c>
-    Header set Content-Security-Policy "default-src 'self' data: blob: 
'unsafe-inline' https://www.apachecon.com/ https://www.communityovercode.org/ 
https://analytics.apache.org/; script-src 'self' 'unsafe-inline' 'unsafe-eval' 
https://analytics.apache.org/ https://www.apachecon.com/ https://*.kapa.ai/ 
https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ 
https://www.recaptcha.net/; script-src-elem 'self' 'unsafe-inline' 
https://www.gstatic.com/recaptcha/ https://www.googl [...]
+    Header set Content-Security-Policy "default-src 'self' data: blob: 
'unsafe-inline' https://www.apachecon.com/ https://www.communityovercode.org/ 
https://analytics.apache.org/; 
+    script-src 'self' 'unsafe-inline' 'unsafe-eval' 
https://analytics.apache.org/ https://*.kapa.ai/ 
https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ 
https://www.recaptcha.net/ https://www.apachecon.com/ 
https://www.communityovercode.org/; 
+    script-src-elem 'self' 'unsafe-inline' https://analytics.apache.org/ 
https://*.kapa.ai/ https://www.gstatic.com/recaptcha/ 
https://www.google.com/recaptcha/ https://www.recaptcha.net/ 
https://www.apachecon.com/ https://www.communityovercode.org/; 
+    connect-src 'self' https://kapa-widget-proxy-la7dkmplpq-uc.a.run.app/ 
https://www.google.com/recaptcha/ https://www.recaptcha.net/ 
https://analytics.apache.org/ https://www.apachecon.com/ 
https://www.communityovercode.org/; 
+    style-src 'self' 'unsafe-inline' https://*.kapa.ai/ 
https://www.apachecon.com/ https://www.communityovercode.org/ data:; 
+    frame-ancestors 'self'; 
+    frame-src 'self' data: blob: https://www.google.com/ 
https://www.recaptcha.net/; 
+    img-src 'self' data: https://*.apache.org/ https://www.apachecon.com/ 
https://*.kapa.ai/ https://www.communityovercode.org/; 
+    worker-src 'self' data: blob:;"
 </IfModule>

Reply via email to