Web IDE single origin fallback is enabled

Usage of different domain increase security. For example: it prevents 3rd apps to access main domain cookies etc.

Setup:

• Setup new Bitlab domain. For example gitlab-static.example.com
• Setup wildcard certificate for *.gitlab-static.example.com
• gitlab.rb

  gitlab_rails['web_ide_extension_host'] = 'gitlab-static.example.com'
  # Example: include a directory to scan for additional config files
  nginx['custom_nginx_config'] = "include /etc/gitlab/nginx/sites-enabled/*.conf;"

• gitlab-ctl reconfigure
• Configure nginx Set up custom extension host domain
  • Change listen directive to bing to the same IP as gitlab: listen x.x.x.240:443 ssl;
  • Test nginx config: /opt/gitlab/embedded/sbin/nginx -p /var/opt/gitlab/nginx -t
  • Reload nginx config: gitlab-ctl hup nginx
• Configure Gitlab Extension host domain here https://gitlab.grinndev.ovh/admin/application_settings/general#js-web-ide-settings and put gitlab-static.example.com

More resources:

• Web IDE extension host domain