mirror of
https://github.com/grafana/grafana.git
synced 2025-01-25 15:56:56 -06:00
35407142d0
* Draft: Feature: Trusted Types support * remove trusted-types package * Create policy before jQuery and Angular is loaded and add feature flag * Add trustedTypePolicies * Sanitize scriptURL * Add TT meta tag for test env * Move trusted types into core * Add DOMParser support for TrustedHTML * Seperate RSS sanitization and add better TrustedHTML support * Get test CSP header from config * Remove dompurify dep from core * Add documentation for trusted types * Apply suggestions from code review Co-authored-by: Kristian Bremberg <114284895+KristianGrafana@users.noreply.github.com> * Add comment about Github discussion thread and things breaking * Remove changes from News panel * Remove TT feature toggle * Expose TT and CSPReportOnly to frontend * Log errors in console when CSP report only is enabled * Log error for reporting and remove test mode * Only insert CSP header in HTML for dev env * Update docs --------- Co-authored-by: Tobias Skarhed <tobias.skarhed@gmail.com> Co-authored-by: Tobias Skarhed <1438972+tskarhed@users.noreply.github.com>
23 lines
711 B
TypeScript
23 lines
711 B
TypeScript
import './core/trustedTypePolicies';
|
|
declare let __webpack_public_path__: string;
|
|
declare let __webpack_nonce__: string;
|
|
|
|
// Check if we are hosting files on cdn and set webpack public path
|
|
if (window.public_cdn_path) {
|
|
__webpack_public_path__ = window.public_cdn_path;
|
|
}
|
|
|
|
// This is a path to the public folder without '/build'
|
|
window.__grafana_public_path__ =
|
|
__webpack_public_path__.substring(0, __webpack_public_path__.lastIndexOf('build/')) || __webpack_public_path__;
|
|
|
|
if (window.nonce) {
|
|
__webpack_nonce__ = window.nonce;
|
|
}
|
|
|
|
// This is an indication to the window.onLoad failure check that the app bundle has loaded.
|
|
window.__grafana_app_bundle_loaded = true;
|
|
|
|
import app from './app';
|
|
app.init();
|