pkg/datasette-auth-headers
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add security note

Browse source
This commit is contained in:
akp 2025-01-08 20:04:15 +00:00
parent dc8d0bdb35
commit a80a344a7a
No known key found for this signature in database
GPG key ID: CF8D58F3DEB20755
1 changed files with 2 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
README.md
View file

@ -46,6 +46,8 @@ You must configure this plugin on the global level within Datasette. An example
`id-header-name` is case-insensitive and is the only configuration option at this time.
**You should not use this plugin with headers that can be set by the end user.** Your reverse proxy must strip/overwrite the headers you configure the plugin with for this to be secure.
## Development
To set up this plugin locally, first checkout the code. Then create a new virtual environment: