mirror of https://github.com/apache/superset.git
Disabling flask-talisman by default (#7535)
flask-talisman was enabled recently and while it may be virtuous in some cases, it seems to break things out of the box. Locally and in dev mode, upon my first redirect it sends to HTTPS and things it crashes. I think it should be opt-in, maybe we can recommend turning this on in production in the docs?
This commit is contained in:
parent
c79077d85d
commit
1fdc96a381
|
@ -613,7 +613,7 @@ SQL_VALIDATORS_BY_ENGINE = {
|
||||||
}
|
}
|
||||||
|
|
||||||
# Do you want Talisman enabled?
|
# Do you want Talisman enabled?
|
||||||
TALISMAN_ENABLED = True
|
TALISMAN_ENABLED = False
|
||||||
# If you want Talisman, how do you want it configured??
|
# If you want Talisman, how do you want it configured??
|
||||||
TALISMAN_CONFIG = {
|
TALISMAN_CONFIG = {
|
||||||
'content_security_policy': None,
|
'content_security_policy': None,
|
||||||
|
|
Loading…
Reference in New Issue