IntenseFinance/firefly-iii
3
0
Fork 0
mirror of https://github.com/firefly-iii/firefly-iii.git synced 2025-02-25 18:45:27 -06:00
Code Issues Packages Projects Releases Wiki Activity

Fix various issues in forms.

Browse Source
This commit is contained in:
James Cole 2021-04-08 17:41:19 +02:00
parent 3e12d26afd
commit f2073a4494
No known key found for this signature in database
GPG Key ID: B5669F9493CDE38D
11 changed files with 23 additions and 22 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

24
app/Http/Middleware/SecureHeaders.php
View File

@ -51,17 +51,17 @@ class SecureHeaders
$response = $next($request); $response = $next($request);
$trackingScriptSrc = $this->getTrackingScriptSource(); $trackingScriptSrc = $this->getTrackingScriptSource();
$csp = [ $csp = [
// "default-src 'none'", "default-src 'none'",
// "object-src 'none'", "object-src 'none'",
// "require-trusted-types-for 'script'", "require-trusted-types-for 'script'",
// sprintf("script-src 'unsafe-inline' 'strict-dynamic' 'nonce-%1s' %2s", $nonce, $trackingScriptSrc), //sprintf("script-src 'unsafe-inline' 'strict-dynamic' 'nonce-%1s' %2s", $nonce, $trackingScriptSrc),
// "style-src 'unsafe-inline' 'self'", sprintf("script-src 'unsafe-eval' 'strict-dynamic' 'self' 'unsafe-inline' 'nonce-%1s' %2s", $nonce, $trackingScriptSrc),
// "frame-ancestors 'none'", "style-src 'unsafe-inline' 'self'",
// "base-uri 'self'", "base-uri 'self'",
// "font-src 'self' data:", "font-src 'self' data:",
// "connect-src 'self'", "connect-src 'self'",
// sprintf("img-src 'self' data: https://a.tile.openstreetmap.org https://b.tile.openstreetmap.org https://c.tile.openstreetmap.org https://api.tiles.mapbox.com %s", $trackingScriptSrc), sprintf("img-src data: 'strict-dynamic' 'self' *.tile.openstreetmap.org %s", $trackingScriptSrc),
// "manifest-src 'self'", "manifest-src 'self'",
]; ];
$route = $request->route(); $route = $request->route();
@ -79,7 +79,7 @@ class SecureHeaders
"camera 'none'", "camera 'none'",
"magnetometer 'none'", "magnetometer 'none'",
"gyroscope 'none'", "gyroscope 'none'",
"speaker 'none'", //"speaker 'none'",
//"vibrate 'none'", //"vibrate 'none'",
"fullscreen 'self'", "fullscreen 'self'",
"payment 'none'", "payment 'none'",

4
frontend/src/components/transactions/TransactionAccount.vue
View File

@ -22,8 +22,8 @@
<div class="form-group"> <div class="form-group">
<div v-if="visible" class="text-xs d-none d-lg-block d-xl-block"> <div v-if="visible" class="text-xs d-none d-lg-block d-xl-block">
<span v-if="0 === this.index">{{ $t('firefly.' + this.direction + '_account') }}</span> <span v-if="0 === this.index">{{ $t('firefly.' + this.direction + '_account') }}</span>
<span v-if="this.index > 0" class="text-warning">{{ $t('firefly.first_split_overrules_' + this.direction) }}</span><br> <span v-if="this.index > 0" class="text-warning">{{ $t('firefly.first_split_overrules_' + this.direction) }}</span>
<span>{{ selectedAccount }}</span> <!--<br><span>{{ selectedAccount }}</span> -->
</div> </div>
<div v-if="!visible" class="text-xs d-none d-lg-block d-xl-block"> <div v-if="!visible" class="text-xs d-none d-lg-block d-xl-block">
&nbsp; &nbsp;

1
frontend/src/components/transactions/TransactionAmount.vue
View File

@ -33,6 +33,7 @@
autocomplete="off" autocomplete="off"
name="amount[]" name="amount[]"
type="number" type="number"
step="any"
> >
</div> </div>
<span v-if="errors.length > 0"> <span v-if="errors.length > 0">

2
public/v2/js/transactions/create.js vendored
View File

File diff suppressed because one or more lines are too long

2
public/v2/js/transactions/create.js.map
View File

File diff suppressed because one or more lines are too long

2
public/v2/js/transactions/edit.js vendored
View File

File diff suppressed because one or more lines are too long

2
public/v2/js/transactions/edit.js.map
View File

File diff suppressed because one or more lines are too long

2
resources/views/v2/accounts/create.twig
View File

@ -6,7 +6,7 @@
<div id="accounts_create"></div> <div id="accounts_create"></div>
{% endblock %} {% endblock %}
{% block scripts %} {% block scripts %}
<script type="text/javascript"> <script type="text/javascript" nonce="{{ JS_NONCE }}">
// this is a terrible hack. // this is a terrible hack.
var previousURL = '{{ Session.get('accounts.create.uri') }}'; var previousURL = '{{ Session.get('accounts.create.uri') }}';
</script> </script>

2
resources/views/v2/accounts/delete.twig
View File

@ -6,7 +6,7 @@
<div id="accounts_delete"></div> <div id="accounts_delete"></div>
{% endblock %} {% endblock %}
{% block scripts %} {% block scripts %}
<script type="text/javascript"> <script type="text/javascript" nonce="{{ JS_NONCE }}">
// this is a terrible hack. // this is a terrible hack.
var previousURL = '{{ Session.get('accounts.delete.uri') }}'; var previousURL = '{{ Session.get('accounts.delete.uri') }}';
</script> </script>

2
resources/views/v2/transactions/create.twig
View File

@ -15,7 +15,7 @@
{% endblock %} {% endblock %}
{% block scripts %} {% block scripts %}
<script type="text/javascript"> <script type="text/javascript" nonce="{{ JS_NONCE }}">
// this is a terrible hack. // this is a terrible hack.
var previousURL = '{{ previousUri }}'; var previousURL = '{{ previousUri }}';
</script> </script>

2
resources/views/v2/transactions/edit.twig
View File

@ -15,7 +15,7 @@
{% endblock %} {% endblock %}
{% block scripts %} {% block scripts %}
<script type="text/javascript"> <script type="text/javascript" nonce="{{ JS_NONCE }}">
// this is a terrible hack. // this is a terrible hack.
var previousURL = '{{ previousUri }}'; var previousURL = '{{ previousUri }}';
</script> </script>