brendandburns edited PR #6401:
This adds allow lists to HTTP which enable the creator of the wasm runtime to specify:
- allowed methods
- allowed schemes
- allowed authorities
It also supports a wildcard value
*
which matches everything.Unit tests to validate the functionality are also included.
Mossaka created PR review comment:
Do you want to follow the convention in wasi-experimental-http that uses "insecure:allow-all" to match everything?
brendandburns updated PR #6401.
brendandburns updated PR #6401.
brendandburns created PR review comment:
I think I will leave wild-card in for now. I'm not sure we want to imply wild-card == insecure, that seems to be up to the user of
wasmtime
to determine what is secure or not in their environment. (or we should define this in the wasi-http spec)
brendandburns closed without merge PR #6401.
Last updated: Dec 23 2024 at 13:07 UTC