GRN2-xx: Added SAFE_HOSTS env variable to block unknown hosts (#1543)

* Added SAFE_HOSTS env variable to block unknown hosts * Update sample.env
2020-05-08 13:33:02 -04:00
parent 8f454cad0e
commit 6fc402e40b
4 changed files with 35 additions and 3 deletions
--- a/sample.env
+++ b/sample.env
@ -16,6 +16,13 @@ SECRET_KEY_BASE=
 BIGBLUEBUTTON_ENDPOINT=
 BIGBLUEBUTTON_SECRET=

+# The hostname that the application is accessible from. 
+#
+# Used to protect against various HTTP header attacks
+# Should be in the form of "domain.com"
+# 
+SAFE_HOSTS=
+
 # Google Login Provider (optional)
 #
 # For in-depth steps on setting up a Google Login Provider, see: