[
https://issues.apache.org/jira/browse/OFBIZ-11951?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17177480#comment-17177480 ]
Alex Bodnaru commented on OFBIZ-11951:
--------------------------------------
in a collaboration project that is also (highly) configurable, the configuration is always in danger of being overriden by a pull.
the entityengine.xml is at a right place, but it has quite a few easily configurable strings, that could be loaded from a properties file.
since we're talking about this file, could the activation of some engine result in a dependency on the jdbc jars associated with it?
the entire java ecosystem is new to me, but i guess properties files may be loaded from an alternative location, in /etc and/or ~/, the environment or at least on the command line.
> Configure the CSP policy in security.properties
> ------------------------------------------------
>
> Key: OFBIZ-11951
> URL:
https://issues.apache.org/jira/browse/OFBIZ-11951> Project: OFBiz
> Issue Type: Improvement
> Components: ALL APPLICATIONS, ALL PLUGINS
> Affects Versions: Trunk
> Reporter: Jacques Le Roux
> Priority: Minor
>
> As suggested by [~alexbodn] at OFBIZ-11889 it would be better to have the CSP policy in a configuation file, security.properties seems to fit
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
Locked
