pt
/
superset
mirror of https://github.com/apache/superset.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Disabling flask-talisman by default (#7535) 

flask-talisman was enabled recently and while it may be virtuous in some
cases, it seems to break things out of the box.

Locally and in dev mode, upon my first redirect it sends to HTTPS and
things it crashes.

I think it should be opt-in, maybe we can recommend turning this on in
production in the docs?
This commit is contained in:
Maxime Beauchemin 2019-05-20 16:58:36 -07:00 committed by GitHub
parent c79077d85d
commit 1fdc96a381
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
superset/config.py
View File

@ -613,7 +613,7 @@ SQL_VALIDATORS_BY_ENGINE = {
}
# Do you want Talisman enabled?
TALISMAN_ENABLED = True
TALISMAN_ENABLED = False
# If you want Talisman, how do you want it configured??
TALISMAN_CONFIG = {
'content_security_policy': None,