Support VA Enterprise Architecture Home team adding injected header #9524
Comments
jilladams
added
Needs refining
|
PR opened on I have a meeting with Elijah from DevOps today to confirm if I also need to add this hostname to Terraform (see second bullet on Considerations when editing and testing the allowlist). I will update later today. |
|
@ElijahLynn Allison is out sick as of earlier this afternoon. Curious if you all were able to meet prior or if you know the answer re: adding a hostname to Terraform (comment above in thread)? |
We weren't able to meet but our team can take this on. ccing @jkalexander7 @ENeal49 for prioritization. |
|
Confirmed that we do need help to add this domain to 2 devops locations that PW team doesn't have write access to. CMS Platform team has time sensitive deadlines and can't help right now without some escalation, so we've asked for help from Platform team for now. CMS-team channel thread re: capacity for Elijah: https://dsva.slack.com/archives/CT4GZBM8F/p1656009212359809 |
|
@jilladams : anyone is free to put in a PR to the devops repo. If you know what changes need to be made there, putting in your own PR is the fastest way to get them in. |
|
@jsgarmon thanks! The commit examples linked from https://depo-platform-documentation.scrollhelp.site/developer-docs/teamsite-overview#TeamSiteoverview-Considerationswheneditingandtestingtheallowlist are pointing at a commit hash version of the file. Links from that doc =
It looks like the file has been significantly refactored in master. Are you able to offer any pointers about the current state of the code that handles the TeamSite CORS allowed origins for |
|
The buckets are now part of the vets-api module, so you just need to make sure any needed origins are in the local |
|
(Ticketed the docs update: department-of-veterans-affairs/va.gov-team#43364) |
|
@ryguyk flagging that as this one is a sprint goal, we may need your help next week to pick it up if Allison's out longer. We can check in on Mon/Tues am, once we know either way. |
|
PR opened on This PR has been merged as of 6/27/2022 |
|
PR on After these changes get deployed, we'll be ready to check and set the cookie value in the browser |
|
@allisonlu I wanted to confirm this before notifying Sagar it's ready but realized I don't know exactly how to help them know what to do next. I was under the impression we could modify the cookie in dev tools to get the injected header to show. Do you know if that's true, and if so, which one we're looking at?
|
|
@jilladams @jsgarmon do you have any more insight on this? or who to contact? |
|
Ah! Nevermind, I got it to show up. Be sure to turn off your CORS setting on your browser, folks!
|
|
new PRs opened to add ea.oit.va.gov on top of the www version to ensure both get the injected header:
edit (6/30/2022): fixing links |
|
Both https://www.ea.oit.va.gov/ and https://ea.oit.va.gov/ have the injected header with the |
jilladams
added
the
Injected header
Description
VA Enterprise Architecture Home plans to adopt the injected header / megamenu.
Our team will need to:
add the site to the proxy-rewrite-whitelist.json allow list, with
"cookieOnly": truefor staging testing.ask devops to add the subdomain to an allow list for the CORS header
Additional context
DEPO teamsite overview - explains the mechanisms, and has notes on testing, for the implementing team
After our work, the team will need to test on Staging. Once they confirm that injected header works and they're ready to publish, we'll need to update code to
cookieOnly: false. That is separately ticketed underAcceptance Criteria
CMS Team
Please check the team(s) that will do this work.
ProgramPlatform CMS TeamSitewide Crew⭐️ Sitewide CMS⭐️ Public Websites⭐️ Facilities⭐️ User supportThe text was updated successfully, but these errors were encountered: