Skip to content

Added a parameter that allows the upgrade of insecure requests#16

Open
nareal wants to merge 2 commits intorundel:masterfrom
nareal:master
Open

Added a parameter that allows the upgrade of insecure requests#16
nareal wants to merge 2 commits intorundel:masterfrom
nareal:master

Conversation

@nareal
Copy link

@nareal nareal commented May 17, 2023

This avoids the browser block of the websocket served through ws

CSP: upgrade-insecure-requests - HTTP | MDN

This is particularly useful when streaming to the outside world using a service like ngrok (see #8)

@nareal
Added a parameter that allows the upgrade of insecure requests
38a562d 
This avoids the browser block of the websocket served through ws

[CSP: upgrade-insecure-requests - HTTP | MDN](https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/upgrade-insecure-requests)
@nareal nareal mentioned this pull request May 17, 2023
Open
@eliocamp
Copy link

eliocamp commented May 17, 2023

With this PR, now I cannot see the serve locally, but it does work with ngrok. Is that expected?

Is there any downside to setting the default to TRUE?

@nareal
Copy link
Author

nareal commented May 18, 2023

Yes, that is expected since locally the websocket is served through an insecure connection.

The downside is that it changes the default behaviour of the package.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nareal @eliocamp