Fix cross-origin integrity (#1871)

See <https://glitch.social/users/bea/updates/434>
feature/8296-invite_api
Eugen 6 years ago committed by GitHub
parent 515434ed87
commit 0d83569899
  1. 2
      app/views/home/index.html.haml
  2. 2
      app/views/layouts/admin.html.haml
  3. 2
      app/views/layouts/auth.html.haml
  4. 2
      app/views/layouts/embedded.html.haml
  5. 2
      app/views/layouts/public.html.haml

@ -1,6 +1,6 @@
- content_for :header_tags do
%script#initial-state{:type => 'application/json'}!= json_escape(render(file: 'home/initial_state', formats: :json))
= javascript_include_tag 'application', integrity: true
= javascript_include_tag 'application', integrity: true, crossorigin: 'anonymous'
= react_component 'Mastodon', default_props, class: 'app-holder', prerender: false

@ -1,5 +1,5 @@
- content_for :header_tags do
= javascript_include_tag 'application_public', integrity: true
= javascript_include_tag 'application_public', integrity: true, crossorigin: 'anonymous'
- content_for :content do
.admin-wrapper

@ -1,5 +1,5 @@
- content_for :header_tags do
= javascript_include_tag 'application_public', integrity: true
= javascript_include_tag 'application_public', integrity: true, crossorigin: 'anonymous'
- content_for :content do
.container

@ -3,6 +3,6 @@
%head
%meta{:charset => 'utf-8'}/
= stylesheet_link_tag 'application', media: 'all'
= javascript_include_tag 'application_public', integrity: true
= javascript_include_tag 'application_public', integrity: true, crossorigin: 'anonymous'
%body.embed
= yield

@ -1,5 +1,5 @@
- content_for :header_tags do
= javascript_include_tag 'application_public', integrity: true
= javascript_include_tag 'application_public', integrity: true, crossorigin: 'anonymous'
- content_for :content do
.container= yield

Loading…
Cancel
Save