(arrow-site) branch main updated: [Website] Allow loading of Arrow logo from gstatic in .htaccess (#635)

Fri, 28 Mar 2025 06:57:25 -0700 

This is an automated email from the ASF dual-hosted git repository.

thisisnic pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/arrow-site.git


The following commit(s) were added to refs/heads/main by this push:
     new 3188ac76e05 [Website] Allow loading of Arrow logo from gstatic in 
.htaccess (#635)
3188ac76e05 is described below

commit 3188ac76e05226e6035856bf5b8ccff4ea50f96d
Author: Nic Crane <[email protected]>
AuthorDate: Fri Mar 28 13:57:13 2025 +0000

    [Website] Allow loading of Arrow logo from gstatic in .htaccess (#635)
    
    Almost there with the changes - an image wouldn't load due to CSP
    restrictrions, so I've allowed the gstatic domain
---
 .htaccess | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.htaccess b/.htaccess
index 7a02f80eafb..806280f7684 100644
--- a/.htaccess
+++ b/.htaccess
@@ -28,5 +28,5 @@ Redirect permanent /ballista 
https://datafusion.apache.org/ballista
 # enable kapa.ai bot (GH-45665)
 # See https://docs.kapa.ai/integrations/understanding-csp-cors and 
https://issues.apache.org/jira/browse/INFRA-26638
 <IfModule mod_headers.c>
-    Header set Content-Security-Policy "default-src 'self' data: blob: 
'unsafe-inline' https://www.apachecon.com/ https://www.communityovercode.org/ 
https://analytics.apache.org/; script-src 'self' 'unsafe-inline' 'unsafe-eval' 
https://analytics.apache.org/ https://www.apachecon.com/ https://*.kapa.ai/ 
https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ 
https://www.recaptcha.net/; script-src-elem 'self' 'unsafe-inline' 
https://www.gstatic.com/recaptcha/ https://www.googl [...]
+    Header set Content-Security-Policy "default-src 'self' data: blob: 
'unsafe-inline' https://www.apachecon.com/ https://www.communityovercode.org/ 
https://analytics.apache.org/; script-src 'self' 'unsafe-inline' 'unsafe-eval' 
https://analytics.apache.org/ https://www.apachecon.com/ https://*.kapa.ai/ 
https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ 
https://www.recaptcha.net/; script-src-elem 'self' 'unsafe-inline' 
https://www.gstatic.com/recaptcha/ https://www.googl [...]
 </IfModule>

Reply via email to