IntenseWebs/grafana
3
0
Fork 0
mirror of https://github.com/grafana/grafana.git synced 2025-02-25 18:55:37 -06:00
Code Issues Packages Projects Releases Wiki Activity

area/configuration: adds docs for actions_allow_post_url security option (#93629)

Browse Source 
adds docs for actions_allow_post_url security option
This commit is contained in:
Brian Gann 2024-09-23 15:41:29 -04:00 committed by GitHub
parent 4c8f6b742b
commit 5c9486afbc
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 12 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
docs/sources/setup-grafana/configure-grafana/_index.md
View File

@ -701,6 +701,18 @@ You can enable both policies simultaneously.
Set the policy template that will be used when adding the `Content-Security-Policy-Report-Only` header to your requests. `$NONCE` in the template includes a random nonce. Set the policy template that will be used when adding the `Content-Security-Policy-Report-Only` header to your requests. `$NONCE` in the template includes a random nonce.
### actions_allow_post_url
Sets API paths to be accessible between plugins using the POST verb. This is a comma separated list, and uses glob matching.
This will allow access to all plugins that have a backend:
`actions_allow_post_url=/api/plugins/*`
This will limit access to the backend of a single plugin:
`actions_allow_post_url=/api/plugins/grafana-special-app`
<hr /> <hr />
### angular_support_enabled ### angular_support_enabled