| --- | |
| security: | |
| - The Horizon service now runs as the non-privileged user `horizon` in the | |
| container. | |
| - The Horizon service ``ALLOWED_HOSTS`` setting is now configured to point | |
| to the configured endpoints for the service. | |
| - The CORS headers are now configured to only allow requests from the | |
| configured endpoints for the service. |