fix(hoppscotch): fix auto generated desktop app whitelist origin

[jonathanfoster]

This PR resolves issues #38 and #43.

Issue #38 is resolved by updating the hoppscotch.backend.whitelistedOrigins named template to replace . with _ for the desktop app origin. This fix includes unit test coverage and has been verified manually.

Issue #43 is resolved by updating chart dependency versions and setting default image repositories to bitnamilegacy/*. This fix has been verified manually using e2e tests.

[jonathanfoster]

@liyasthomas Can you confirm what should be whitelisted for the desktop app? Here's what I have based on the desktop app README. Assume I'm self-hosting Hoppscotch on https://hoppscotch.example.com.

Requirements:

• Backend whitelisted origins must include web app origin (e.g., https://hoppscotch.example.com)
• Backend whitelisted origins must include backend origin (e.g., https://hoppscotch.example.com)
• Backend whitelisted origins must include MacOS and Linux desktop app origin (e.g., app://hoppscotch_example_com)
• Backend whitelisted origins must include Windows desktop app origin (e.g., http://app.hoppscotch_example_com)
• Desktop app origin host must be normalized by replacing . with _ (e.g., hoppscotch.example.com becomes hoppscotch_example_com)

If I were to manually configure whitelisted origins, it would look like this:

hoppscotch:
  backend:
    whitelistedOrigins:
      - https://hoppscotch.example.com
      - app://hoppscotch_example_com
      - http://app.hoppscotch_example_com

Is this correct? Anything else to add? If not, then this PR is ready to go.

[nahidhasan94]

@liyasthomas Can you confirm what should be whitelisted for the desktop app? Here's what I have based on the desktop app README. Assume I'm self-hosting Hoppscotch on https://hoppscotch.example.com.

Requirements:

• Backend whitelisted origins must include web app origin (e.g., https://hoppscotch.example.com)
• Backend whitelisted origins must include backend origin (e.g., https://hoppscotch.example.com)
• Backend whitelisted origins must include MacOS and Linux desktop app origin (e.g., app://hoppscotch_example_com)
• Backend whitelisted origins must include Windows desktop app origin (e.g., http://app.hoppscotch_example_com)
• Desktop app origin host must be normalized by replacing . with _ (e.g., hoppscotch.example.com becomes hoppscotch_example_com)

If I were to manually configure whitelisted origins, it would look like this:

hoppscotch:
  backend:
    whitelistedOrigins:
      - https://hoppscotch.example.com
      - app://hoppscotch_example_com
      - http://app.hoppscotch_example_com

Is this correct? Anything else to add? If not, then this PR is ready to go.

Yes, you are right.
If you run locally, the whitelist value would be:
WHITELISTED_ORIGINS=http://localhost:3170,http://localhost:3000,http://localhost:3100,app://localhost_3200,app://hoppscotch