mirror of
https://codeberg.org/PostERG/xamxam.git
synced 2026-06-25 16:19:19 +02:00
fix: track vendor JS files, add 'unsafe-inline' to public CSP, gitignore filepond tmp
- Track vendor JS files (filepond, htmx, overtype) that were moved to app/public/assets/js/vendor/ but never tracked → missing from deploys - Add script-src 'self' 'unsafe-inline' to main CSP header so public pages (jury fieldset, repertoire, partage) can use inline scripts and onclick handlers - Add storage/tmp/filepond/* to .gitignore with .gitkeep, and exclude from deploy rsync to avoid syncing local test uploads to production
This commit is contained in:
Pontoporeia
2
.gitignore
vendored
2
.gitignore
vendored
@@ -20,6 +20,8 @@ app/storage/banners/*
|
||||
!app/storage/banners/.gitkeep
|
||||
app/storage/tmp/*
|
||||
!app/storage/tmp/.gitkeep
|
||||
app/storage/tmp/filepond/*
|
||||
!app/storage/tmp/filepond/.gitkeep
|
||||
|
||||
# Nix
|
||||
.direnv/
|
||||
|
||||
Reference in New Issue
Block a user