b10be23533
It's important that artifacts are never given 'same origin' access to the forum domain, so that they cannot access cookies, or make authenticated HTTP requests. So even when visiting the URL directly, we need to wrap them in a sandboxed iframe. |
||
---|---|---|
.. | ||
artifacts_controller_spec.rb | ||
bot_controller_spec.rb | ||
shared_ai_conversations_spec.rb |