mirror of
https://github.com/bookwyrm-social/bookwyrm.git
synced 2024-12-23 16:40:36 +00:00
Merge branch 'main' into discover-page-test
This commit is contained in:
commit
46fe65c3bb
3 changed files with 11 additions and 5 deletions
|
@ -120,3 +120,8 @@ OTEL_SERVICE_NAME=
|
||||||
# for your instance:
|
# for your instance:
|
||||||
# https://docs.djangoproject.com/en/3.2/ref/settings/#secure-proxy-ssl-header
|
# https://docs.djangoproject.com/en/3.2/ref/settings/#secure-proxy-ssl-header
|
||||||
HTTP_X_FORWARDED_PROTO=false
|
HTTP_X_FORWARDED_PROTO=false
|
||||||
|
|
||||||
|
# Additional hosts to allow in the Content-Security-Policy, "self" (should be DOMAIN)
|
||||||
|
# and AWS_S3_CUSTOM_DOMAIN (if used) are added by default.
|
||||||
|
# Value should be a comma-separated list of host names.
|
||||||
|
CSP_ADDITIONAL_HOSTS=
|
||||||
|
|
|
@ -330,6 +330,7 @@ IMAGEKIT_DEFAULT_CACHEFILE_STRATEGY = "bookwyrm.thumbnail_generation.Strategy"
|
||||||
# https://docs.djangoproject.com/en/3.2/howto/static-files/
|
# https://docs.djangoproject.com/en/3.2/howto/static-files/
|
||||||
|
|
||||||
PROJECT_DIR = os.path.dirname(os.path.abspath(__file__))
|
PROJECT_DIR = os.path.dirname(os.path.abspath(__file__))
|
||||||
|
CSP_ADDITIONAL_HOSTS = env.list("CSP_ADDITIONAL_HOSTS", [])
|
||||||
|
|
||||||
# Storage
|
# Storage
|
||||||
|
|
||||||
|
@ -361,15 +362,15 @@ if USE_S3:
|
||||||
MEDIA_FULL_URL = MEDIA_URL
|
MEDIA_FULL_URL = MEDIA_URL
|
||||||
STATIC_FULL_URL = STATIC_URL
|
STATIC_FULL_URL = STATIC_URL
|
||||||
DEFAULT_FILE_STORAGE = "bookwyrm.storage_backends.ImagesStorage"
|
DEFAULT_FILE_STORAGE = "bookwyrm.storage_backends.ImagesStorage"
|
||||||
CSP_DEFAULT_SRC = ("'self'", AWS_S3_CUSTOM_DOMAIN)
|
CSP_DEFAULT_SRC = ["'self'", AWS_S3_CUSTOM_DOMAIN] + CSP_ADDITIONAL_HOSTS
|
||||||
CSP_SCRIPT_SRC = ("'self'", AWS_S3_CUSTOM_DOMAIN)
|
CSP_SCRIPT_SRC = ["'self'", AWS_S3_CUSTOM_DOMAIN] + CSP_ADDITIONAL_HOSTS
|
||||||
else:
|
else:
|
||||||
STATIC_URL = "/static/"
|
STATIC_URL = "/static/"
|
||||||
MEDIA_URL = "/images/"
|
MEDIA_URL = "/images/"
|
||||||
MEDIA_FULL_URL = f"{PROTOCOL}://{DOMAIN}{MEDIA_URL}"
|
MEDIA_FULL_URL = f"{PROTOCOL}://{DOMAIN}{MEDIA_URL}"
|
||||||
STATIC_FULL_URL = f"{PROTOCOL}://{DOMAIN}{STATIC_URL}"
|
STATIC_FULL_URL = f"{PROTOCOL}://{DOMAIN}{STATIC_URL}"
|
||||||
CSP_DEFAULT_SRC = "'self'"
|
CSP_DEFAULT_SRC = ["'self'"] + CSP_ADDITIONAL_HOSTS
|
||||||
CSP_SCRIPT_SRC = "'self'"
|
CSP_SCRIPT_SRC = ["'self'"] + CSP_ADDITIONAL_HOSTS
|
||||||
|
|
||||||
CSP_INCLUDE_NONCE_IN = ["script-src"]
|
CSP_INCLUDE_NONCE_IN = ["script-src"]
|
||||||
|
|
||||||
|
|
|
@ -46,7 +46,7 @@
|
||||||
</div>
|
</div>
|
||||||
|
|
||||||
<div class="notification has-background-body p-2 mb-2 clip-text">
|
<div class="notification has-background-body p-2 mb-2 clip-text">
|
||||||
{% include "snippets/status/content_status.html" with hide_book=True trim_length=70 hide_more=True %}
|
{% include "snippets/status/content_status.html" with hide_book=True trim_length=70 hide_more=True expand=False %}
|
||||||
</div>
|
</div>
|
||||||
<a href="{{ status.remote_id }}">
|
<a href="{{ status.remote_id }}">
|
||||||
<span>{% trans "View status" %}</span>
|
<span>{% trans "View status" %}</span>
|
||||||
|
|
Loading…
Reference in a new issue