1
0
Fork 0
vaultwarden-test/src/api
BlackDex 0f588ced03
Removed unsafe-inline JS from CSP and other fixes
- Removed `unsafe-inline` for javascript from CSP.
  The admin interface now uses files instead of inline javascript.
- Modified javascript to work not being inline.
- Run eslint over javascript and fixed some items.
- Added a `to_json` Handlebars helper.
  Used at the diagnostics page.
- Changed `AdminTemplateData` struct to be smaller.
  The `config` was always added, but only used at one page.
  Same goes for `can_backup` and `version`.
- Also inlined CSS.
  We can't remove the `unsafe-inline` from css, because that seems to
  break the web-vault currently. That might need some further checks.
  But for now the 404 page and all the admin pages are clear of inline scripts and styles.
2023-01-09 18:25:35 +01:00
..
core Remove patched multer-rs 2023-01-09 18:25:35 +01:00
admin.rs Removed unsafe-inline JS from CSP and other fixes 2023-01-09 18:25:35 +01:00
icons.rs Cleanups and Fixes for Emergency Access 2022-12-04 23:15:03 +01:00
identity.rs Fix recover-2fa not working. 2022-12-18 20:32:06 +01:00
mod.rs Add Organizational event logging feature 2022-12-01 22:38:59 +01:00
notifications.rs Use constant size generic parameter for random bytes generation 2022-11-11 11:59:27 +01:00
web.rs Removed unsafe-inline JS from CSP and other fixes 2023-01-09 18:25:35 +01:00