yoinkkk/ExcaliDash
2
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Update RELEASE.md with CSRF_SECRET instructions

Browse Source 
Added instructions for the required CSRF_SECRET environment variable for CSRF protection in Kubernetes deployments.
This commit is contained in:
Zimeng Xiong
2026-01-14 13:11:13 -08:00
committed by GitHub
parent c5c8b15e75
commit 71f18a2053
1 changed files with 14 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files
RELEASE.md
+14
View File
@@ -27,3 +27,17 @@ CSRF Protection (8a78b2b)
- Updated docker-compose configurations with new environment variables - Updated docker-compose configurations with new environment variables
- E2E test suite improvements and reliability fixes - E2E test suite improvements and reliability fixes
- Added Kubernetes deployment note in README - Added Kubernetes deployment note in README
### Kubernetes
A `CSRF_SECRET` environment variable is now required for CSRF protection. Generate a secure 32+ character random string:
```bash
openssl rand -base64 32
Add it to your deployment:
- Docker Compose: Add CSRF_SECRET=<your-secret> to the backend service environment
- Kubernetes: Add to your ConfigMap/Secret and reference in the backend deployment
If not set, the backend will refuse to start.
```