Content Security Policy Implementation for WebIDE and Code Suggestion Gateway
🧩 Problem to solve
We need to update the Content Security Policy (CSP) to support WebIDE talking to the Code-Suggestion backend.
:bulb:Proposal
In an effort to test and then address (should it be necessary) this issue, @a_akgun propose a rather slick solution.
- We setup a per-user feature flag for this feature in WebIDE.
- We push the feature out.
- We enable the feature flag for a few of us.
- We test if code-suggestion works
- A: If it does not work work then we edit the CSP with the assistance of those who maintain that subsystem.
- B: If it does work then we jump to the end.
- Roll this feature out gradually who everyone who should have it.
🎯 Goals
- Enter
codesuggestions.gitlab.com
on the CSP setting on gitlab code base .DRI @pslaughter - Change model gateway API to be CORS-free. DRI @tle_gitlab
Edited by Mon Ray