HonahX commented on issue #941: URL: https://github.com/apache/polaris/issues/941#issuecomment-2638237011
I did some search in ASF infra and found that there is a recent update ([INFRA ticket ](https://issues.apache.org/jira/issues/?jql=project%20%3D%20INFRA%20AND%20text%20~%20%22content%20security%22%20ORDER%20BY%20updated%20DESC) on the Content Security Policy.) Specifically, the change enforcing the following rule ``` 4) Using Assets from other Domains Assets (JavaScript files or snippets, images, fonts, CSS, etc.) from other domains cannot be loaded. All assets need to be hosted on ASF servers. ``` as documented at https://privacy.apache.org/policies/website-policy.html It seems the shortcode we are using for rendering API docs, https://github.com/apache/polaris/blob/20817e14e8448114226e76ab8163de35ba0fd6d2/site/layouts/shortcodes/redoc-polaris.html#L118 falls into the above category and therefore gets banned. I think a quick solution will be to redirect API docs to a swagger editor like what Iceberg site does for IRC spec: https://github.com/apache/iceberg/blob/585a338c1e9d287476462e3a6abab40b8803fc2c/site/nav.yml#L45 Please correct me if I misunderstand anything :) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
