codecombat/app/assets/javascripts
Phoenix Eliot bdabee865c Filter domains for webdev iFrame
This serves the web-dev surface iFrame from another domain, such that user-created levels can't sniff cookies from a visitor to their page. It forces a redirect if a path is accesses through the wrong domain.

Use ENV variables for hostnames

Allow messages from all relevant domains

Use the right iFrame URL for different domains

Let the load balancer check /healthcheck

Add special handling for china server

Generalize subdomain handling
2016-09-06 16:17:38 -07:00
..
workers Better handling of non-user-code problems in game-dev mode. Don't simulate whole level first time a game-dev level is loaded. 2016-08-24 15:21:09 -07:00
boot.js
run-tests.js Fix Travis tests 2016-04-15 15:36:35 -07:00
web-dev-listener.js Filter domains for webdev iFrame 2016-09-06 16:17:38 -07:00