This is an automated email from the ASF dual-hosted git repository.
assignuser pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow-site.git
The following commit(s) were added to refs/heads/main by this push:
new 0c75b60ca34 Update .htaccess to allow kapa.ai bot (#623)
0c75b60ca34 is described below
commit 0c75b60ca3404376151b09a32e5ee241c35e64dd
Author: Nic Crane <thisis...@gmail.com>
AuthorDate: Thu Mar 20 15:35:14 2025 -0400
Update .htaccess to allow kapa.ai bot (#623)
Enabling the kapa.ai bot, this time using an Infra-suggested CSP update
(see https://issues.apache.org/jira/browse/INFRA-26638).
---
.htaccess | 6 ++++++
1 file changed, 6 insertions(+)
diff --git a/.htaccess b/.htaccess
index 327ebb6c3c7..b8cc0faa847 100644
--- a/.htaccess
+++ b/.htaccess
@@ -24,3 +24,9 @@ Redirect permanent /datafusion-python
https://datafusion.apache.org/python
# redirect all ballista URLs to new website
Redirect permanent /ballista https://datafusion.apache.org/ballista
+
+# enable kapa.ai bot (GH-45665)
+# See https://docs.kapa.ai/integrations/understanding-csp-cors and
https://issues.apache.org/jira/browse/INFRA-26638
+<IfModule mod_headers.c>
+ Header set Content-Security-Policy "default-src 'self' data: blob:
'unsafe-inline' https://www.apachecon.com/ https://www.communityovercode.org/
https://analytics.apache.org/; script-src 'self' 'unsafe-inline' 'unsafe-eval'
https://analytics.apache.org/ https://www.apachecon.com/ https://*.kapa.ai/;
style-src 'self' 'unsafe-inline' https://*.kapa.ai/ data:; frame-ancestors
'self'; frame-src 'self' data: blob:; img-src 'self' data:
https://*.apache.org/ https://www.apachecon.com/ [...]
+</IfModule>
