discourse-ai/app/controllers/discourse_ai/ai_bot
David Taylor b10be23533
FIX: Ensure artifacts are sandboxed, even when visited directly (#921)
It's important that artifacts are never given 'same origin' access to the forum domain, so that they cannot access cookies, or make authenticated HTTP requests. So even when visiting the URL directly, we need to wrap them in a sandboxed iframe.
2024-11-19 11:44:17 +00:00
..
artifacts_controller.rb FIX: Ensure artifacts are sandboxed, even when visited directly (#921) 2024-11-19 11:44:17 +00:00
bot_controller.rb FEATURE: improve tool support (#904) 2024-11-12 08:14:30 +11:00
shared_ai_conversations_controller.rb FEATURE: restrict public sharing on login required sites (#649) 2024-05-29 11:04:47 +10:00