diff --git a/changes/changelog.d/1526.enhancement b/changes/changelog.d/1526.enhancement new file mode 100644 index 0000000000000000000000000000000000000000..30e865a9fcf5a66d11da7c73ea44cf9f589e69cd --- /dev/null +++ b/changes/changelog.d/1526.enhancement @@ -0,0 +1 @@ +Automatically fetch next page of tracks (#1526) diff --git a/changes/changelog.d/rewrite-embedded-player.enhancement b/changes/changelog.d/rewrite-embedded-player.enhancement new file mode 100644 index 0000000000000000000000000000000000000000..f22eb7b063f71d082eb001ed0536fe3ecfee88be --- /dev/null +++ b/changes/changelog.d/rewrite-embedded-player.enhancement @@ -0,0 +1 @@ +Rewrite embedded player to petite-vue diff --git a/deploy/nginx.template b/deploy/nginx.template index 2e6c81081a53cd5ada937ac93544a87baabfebf7..a1e7177295c0d320d5080230dfcc77c2bca63946 100644 --- a/deploy/nginx.template +++ b/deploy/nginx.template @@ -94,7 +94,7 @@ server { add_header Cache-Control "public, must-revalidate, proxy-revalidate"; } location = /front/embed.html { - add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:; worker-src 'self'"; + add_header Content-Security-Policy "connect-src https: http: 'self'; default-src 'self'; script-src 'self' unpkg.com 'unsafe-inline' 'unsafe-eval'; style-src https: http: 'self' 'unsafe-inline'; img-src https: http: 'self' data:; font-src https: http: 'self' data:; object-src 'none'; media-src https: http: 'self' data:"; add_header Referrer-Policy "strict-origin-when-cross-origin"; add_header X-Frame-Options "" always; diff --git a/docker/nginx/conf.dev b/docker/nginx/conf.dev index 7be13a7b8ad1c98b943449e322e4125f7beb8013..928f7e6828379418328e772e576bd97d432346d4 100644 --- a/docker/nginx/conf.dev +++ b/docker/nginx/conf.dev @@ -83,7 +83,7 @@ http { proxy_pass http://funkwhale-front/front/; } location /front/embed.html { - add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src https: http: 'self' 'unsafe-inline'; img-src https: http: 'self' data:; font-src https: http: 'self' data:; object-src 'none'; media-src https: http: 'self' data:"; + add_header Content-Security-Policy "connect-src https: http: 'self'; default-src 'self'; script-src 'self' unpkg.com 'unsafe-inline' 'unsafe-eval'; style-src https: http: 'self' 'unsafe-inline'; img-src https: http: 'self' data:; font-src https: http: 'self' data:; object-src 'none'; media-src https: http: 'self' data:"; add_header Referrer-Policy "strict-origin-when-cross-origin"; add_header X-Frame-Options "" always; proxy_pass http://funkwhale-front/front/embed.html; diff --git a/front/.eslintrc.js b/front/.eslintrc.js index 176563ac7a4080b25bba8e33f0afff59f09a45d8..343c62e278c8ca42cefe8f1987ca38db6379ea34 100644 --- a/front/.eslintrc.js +++ b/front/.eslintrc.js @@ -7,7 +7,6 @@ module.exports = { 'plugin:vue/vue3-recommended', '@vue/typescript/recommended', '@vue/standard' - ], globals: { SharedArrayBuffer: 'readonly', @@ -42,5 +41,15 @@ module.exports = { // TODO (wvffle): Remove after API Client '@typescript-eslint/no-explicit-any': 'off' - } + }, + overrides: [ + { + files: ['public/embed.html'], + rules: { + // NOTE: It is broken for some reason. It's safe to disable in a .html file as this rule only + // brings comments support for the