AppStd/EnvelopeGenerator
8
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Removed inner styles and updated CSP

Browse Source
This commit is contained in:
Developer 02 2024-05-14 13:50:03 +02:00
parent 87a766a2e8
commit cf9286e4c3
5 changed files with 27 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
EnvelopeGenerator.Web/Program.cs
View File

@ -185,9 +185,9 @@ try
app.UseHttpsRedirection();
var csp = config["Content-Security-Policy"];
if(csp is not null)
app.UseCSPMiddleware(csp);
var csp_list = config.GetSection("Content-Security-Policy").Get<string[]>();
if(csp_list is not null)
app.UseCSPMiddleware($"{string.Join("; ", csp_list)};");
app.UseStaticFiles();

2
EnvelopeGenerator.Web/Views/Home/EnvelopeLocked.cshtml
View File

@ -67,7 +67,7 @@
}
var baseUrl = "/img/flags";
var $state = $(
`<span style="font-size: 0.85rem;"><img src="${baseUrl}/${state.element.value}.png" class="img-flag me-3" />${state.text}</span>`
`<span><img src="${baseUrl}/${state.element.value}.png" class="img-flag me-3" />${state.text}</span>`
);
return $state;
};

2
EnvelopeGenerator.Web/Views/Home/ShowEnvelope.cshtml
View File

@ -85,4 +85,4 @@
})
</script>
}
<div id='app' style='background: gray; width: 100vw; height: 100vh; margin: 0 auto;'></div>
<div id='app'></div>

12
EnvelopeGenerator.Web/appsettings.json
View File

@ -12,7 +12,17 @@
},
"PSPDFKitLicenseKey": null,
/* The first format parameter {0} will be replaced by the nonce value. */
"Content-Security-Policy": "default-src 'self'; script-src 'self' 'nonce-{0}'; style-src 'self' 'nonce-{0}'; img-src 'self' data: https:; font-src 'self'; connect-src 'self' wss://localhost:44385 ws://localhost:61446; frame-src 'self'; media-src 'self'; object-src 'self';",
"Content-Security-Policy": [
"default-src 'self'",
"script-src 'self' 'nonce-{0}'",
"style-src 'self' 'nonce-{0}'",
"img-src 'self' data: https:",
"font-src 'self'",
"connect-src 'self' http://localhost:* https://localhost:* ws://localhost:* wss://localhost:*",
"frame-src 'self'",
"media-src 'self'",
"object-src 'self'"
],
"AdminPassword": "dd",
"AllowedOrigins": [ "https://localhost:7202", "https://digitale.unterschrift.wisag.de/" ],
"NLog": {

11
EnvelopeGenerator.Web/wwwroot/css/site.css
View File

@ -5,6 +5,13 @@
/* Toolbar Buttons */
#app {
background: gray;
width: 100vw;
height: 100vh;
margin: 0 auto;
}
.button-finish {
transition: background-color linear 300ms;
background-color: #059669; /* emerald-600 */
@ -199,3 +206,7 @@ footer#page-footer a:focus {
.select2-search__field {
display:none
}
.lang-item {
font-size: 0.85rem;
}