Security fixes (#8081)

* use safeloader * use json responses wherever possible * remove CORS and add CSRF token * formatting fixes * add envjs back * fix baseurl test
2023-10-06 22:20:30 -05:00
parent 9a4f970337
commit 14d2b79c72
24 changed files with 1357 additions and 488 deletions
--- a/web/vite.config.ts
+++ b/web/vite.config.ts
@@ -9,6 +9,13 @@ export default defineConfig({
  define: {
    'import.meta.vitest': 'undefined',
  },
+  server: {
+    proxy: {
+      '/api': {
+        target: 'http://localhost:5000'
+      }
+    }
+  },
  plugins: [
    preact(),
    monacoEditorPlugin.default({