MyFavMirrors/MeshCentral
1
0
Fork 0
mirror of https://github.com/Ylianst/MeshCentral.git synced 2025-10-29 15:25:01 -04:00
Code Issues Packages Projects Releases Wiki Activity

fix theme switch to default bug and include google fonts in csp #6665

Browse Source 
Signed-off-by: si458 <simonsmith5521@gmail.com>
This commit is contained in:
si458 2025-01-06 16:02:10 +00:00
parent 998769a888
commit def62075c7
25 changed files with 5 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
public/scripts/themes/theme-switcher.js
View File

@ -4,8 +4,8 @@ document.addEventListener("DOMContentLoaded", function () {
// Load saved theme from local storage
const savedTheme = localStorage.getItem("theme");
if (savedTheme) {
const safeTheme = encodeURIComponent(savedTheme);
themeStylesheet.href = `styles/themes/${safeTheme}/bootstrap.min.css`;
const safeTheme = ((savedTheme != 'default') ? encodeURIComponent(savedTheme) : encodeURIComponent('..'));
themeStylesheet.href = `styles/themes/${safeTheme}/bootstrap-min.css`;
}
// Initialize Select2 on all select elements with the 'select2' class

0
public/styles/themes/cerulean/bootstrap.min.css → public/styles/themes/cerulean/bootstrap-min.css vendored
View File

0
public/styles/themes/cosmo/bootstrap.min.css → public/styles/themes/cosmo/bootstrap-min.css vendored
View File

0
public/styles/themes/cyborg/bootstrap.min.css → public/styles/themes/cyborg/bootstrap-min.css vendored
View File

0
public/styles/themes/darkly/bootstrap.min.css → public/styles/themes/darkly/bootstrap-min.css vendored
View File

0
public/styles/themes/flatly/bootstrap.min.css → public/styles/themes/flatly/bootstrap-min.css vendored
View File

0
public/styles/themes/journal/bootstrap.min.css → public/styles/themes/journal/bootstrap-min.css vendored
View File

0
public/styles/themes/litera/bootstrap.min.css → public/styles/themes/litera/bootstrap-min.css vendored
View File

0
public/styles/themes/lumen/bootstrap.min.css → public/styles/themes/lumen/bootstrap-min.css vendored
View File

0
public/styles/themes/lux/bootstrap.min.css → public/styles/themes/lux/bootstrap-min.css vendored
View File

0
public/styles/themes/materia/bootstrap.min.css → public/styles/themes/materia/bootstrap-min.css vendored
View File

0
public/styles/themes/minty/bootstrap.min.css → public/styles/themes/minty/bootstrap-min.css vendored
View File

0
public/styles/themes/morph/bootstrap.min.css → public/styles/themes/morph/bootstrap-min.css vendored
View File

0
public/styles/themes/pulse/bootstrap.min.css → public/styles/themes/pulse/bootstrap-min.css vendored
View File

0
public/styles/themes/sandstone/bootstrap.min.css → public/styles/themes/sandstone/bootstrap-min.css vendored
View File

0
public/styles/themes/simplex/bootstrap.min.css → public/styles/themes/simplex/bootstrap-min.css vendored
View File

0
public/styles/themes/sketchy/bootstrap.min.css → public/styles/themes/sketchy/bootstrap-min.css vendored
View File

0
public/styles/themes/solar/bootstrap.min.css → public/styles/themes/solar/bootstrap-min.css vendored
View File

0
public/styles/themes/spacelab/bootstrap.min.css → public/styles/themes/spacelab/bootstrap-min.css vendored
View File

0
public/styles/themes/united/bootstrap.min.css → public/styles/themes/united/bootstrap-min.css vendored
View File

0
public/styles/themes/vapor/bootstrap.min.css → public/styles/themes/vapor/bootstrap-min.css vendored
View File

0
public/styles/themes/yeti/bootstrap.min.css → public/styles/themes/yeti/bootstrap-min.css vendored
View File

0
public/styles/themes/zephyr/bootstrap.min.css → public/styles/themes/zephyr/bootstrap-min.css vendored
View File

5
views/default3.handlebars
View File

@ -14138,10 +14138,9 @@
function account_switchThemeEx() {
var themeSwitcher = document.getElementById('theme-switcher');
const selectedTheme = themeSwitcher.value;
const safeTheme = encodeURIComponent(selectedTheme);
const safeTheme = ((selectedTheme != 'default') ? encodeURIComponent(selectedTheme) : encodeURIComponent('..'));
var themeStylesheet = document.getElementById('theme-stylesheet');
var newThemeStylesheet = `styles/themes/${safeTheme}/bootstrap.min.css`;
themeStylesheet.href = newThemeStylesheet;
themeStylesheet.href = `styles/themes/${safeTheme}/bootstrap-min.css`;
// Save selected theme
putstore('theme', selectedTheme);
// Update last 4 themes selected

2
webserver.js
View File

@ -6502,7 +6502,7 @@ module.exports.CreateWebServer = function (parent, db, args, certificates, doneF
'Referrer-Policy': 'no-referrer',
'X-XSS-Protection': '1; mode=block',
'X-Content-Type-Options': 'nosniff',
'Content-Security-Policy': "default-src 'none'; font-src 'self'; script-src 'self' 'unsafe-inline'" + extraScriptSrc + "; connect-src 'self'" + geourl + selfurl + "; img-src 'self' blob: data:" + geourl + " data:; style-src 'self' 'unsafe-inline'; frame-src 'self' blob: mcrouter:" + extraFrameSrc + "; media-src 'self'; form-action 'self'; manifest-src 'self'"
'Content-Security-Policy': "default-src 'none'; font-src 'self' fonts.gstatic.com data:; script-src 'self' 'unsafe-inline' " + extraScriptSrc + "; connect-src 'self'" + geourl + selfurl + "; img-src 'self' blob: data:" + geourl + " data:; style-src 'self' 'unsafe-inline' fonts.googleapis.com; frame-src 'self' blob: mcrouter:" + extraFrameSrc + "; media-src 'self'; form-action 'self'; manifest-src 'self'"
};
if (req.headers['user-agent'] && (req.headers['user-agent'].indexOf('Chrome') >= 0)) { headers['Permissions-Policy'] = 'interest-cohort=()'; } // Remove Google's FLoC Network, only send this if Chrome browser
if ((parent.config.settings.allowframing !== true) && (typeof parent.config.settings.allowframing !== 'string')) { headers['X-Frame-Options'] = 'sameorigin'; }