Skip to content

authz: always set `allowAccessByDefault` to `false` on dotcom

Warren Gifford requested to merge jc/dotcom-allowAccessByDefault into main

Created by: unknwon

To prevent private resources leaking due to misconfiguration, we should always set allowAccessByDefault to false on dotcom.


Status: I'd like to merge this after https://github.com/sourcegraph/sourcegraph/pull/26193 is deployed and tested on prod, in case they create confusion when there is an authz bug.

Merge request reports

Loading