Document behavior with allow_insecure_derivatives disabled

Created on 15 December 2020, over 4 years ago

Updated 1 September 2023, over 1 year ago

Problem/Motivation

Does this module work if allow_insecure_derivatives is disabled? Document the answer.

Steps to reproduce

1. On a development environment (dev.example.com) enable stage_file_proxy module.
2. Set the origin to production (www.example.com)
3. Upload an image to production called "file1.jpg"
4. Setup an image style on production called "mystyle"
5. Generate an image style URL on the development environment, for example you can use drush:

drush php:cli
>>> $path = 'public://2020-12/file1.jpg';
=> "public://2020-12/file1.jpg"
>>> $url = \Drupal\image\Entity\ImageStyle::load('mystyle')->buildUrl($path);
=> "http://dev.example.com/sites/default/files/styles/mystyle/public/2020-12..."

6. Go to that URL on the development environment and notice it redirects to www.example.com and shows a 404 page

Other notable configurations:
Imagecache Root: enabled
Hotlink: enabled

Proposed resolution

Document whether the user of this module should expect a 404 for image styles that have not yet been generated. Also, confirm if this is because allow_insecure_derivatives is disabled.

Remaining tasks

User interface changes

API changes

Data model changes

📌 Task

Status

Closed: outdated

Version

2.0

Component

Documentation

Created by

🇺🇸United States josephdpurcell@gmail.com

Live updates comments and jobs are added and updated live.

Incomplete comments

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

Comment almost 2 years ago →
🇺🇸United States smustgrave
Wonder if this is still a valid task?
Status changed to Closed: outdated over 1 year ago5:59pm 1 September 2023
Comment over 1 year ago →
🇺🇸United States smustgrave

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024