New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Need to whitelist our copy of Snap4Arduino #225
Comments
Hi @ToonTalk, I need to talk with @bromagosa about this... but it is not the best moment... because many "servers" questions are on the table. We have an issue (an important issue for us) accessing to the cloud. You can see it, even in your iframed ecraft2learn snap4arduino. We have access to the cloud (logining, working with our own cloud files...) but the option "Open from URL" (to work with shared projects) is not running because a Miosoft issue (also, another whitelist). Changes into SnapCloud are comming soon. And then, it will be the time to define wich Snap4Arduino (and also Snap) services/sites are supported by the team. And this will define the whitelists (for snapCloud, plugin...) I think you have three choices:
Anyway, I write down the SSL certificates tip to my list. You are right our official online service needs to avoid those security warnings. Continue... Joan |
Thanks for the response. I'll bring up the options you listed with the rest of the technical team. |
This is fixed in the dev version :) |
Oops... @bromagosa... but the issue is not about the cloud whitelist (fixed in dev version)... is about the chromium plugin whitelist. I reopen it. @ToonTalk, I'll take this next week (after our next release and the snap cloud changes), but only two comments after reading ecraft2learn issue...
And a last comment about security...I think plugins whitelist is for managing user trust. They install a Snap4Arduino Project plugin and they allow our (Snap4Arduino project) services connect to their serial devices. We can not give the trust of users to third parties (to domains that may contain other soft). Let's continue... |
Thanks for the update. github.io works fine with HTTPS - our problem is the plugin doesn't work. We are looking into creating our own (solution 2 in your post of 18 days ago). |
Ok, I leave the ticket open till I take the SSL warnings issue... And maybe, after the cloud migration (now we are overwhelmed) we'll talk about whitelist and collaboration between projects. Joan |
Until the SSL warning is resolved we've decided to use your suggestion #1: install a "folder extension" in Chrome. Thanks again for your help. |
This is similar to #128 but our reasons for wanting to host a copy are:
Please add https://ecraft2learn.github.io/* or https://ecraft2learn.github.io/uui/* to Snap4Arduino/src/platforms/web/chromium/crx/manifest.json
The text was updated successfully, but these errors were encountered: