fix theme switch to default bug and include google fonts in csp #6665

Signed-off-by: si458 <simonsmith5521@gmail.com>
2025-02-12 11:01:52 +00:00 · 2025-01-06 16:02:10 +00:00 · 2025-01-06 16:02:10 +00:00 · def62075c7
commit def62075c7
parent 998769a888
25 changed files with 5 additions and 6 deletions
--- a/public/scripts/themes/theme-switcher.js
+++ b/public/scripts/themes/theme-switcher.js
@ -4,8 +4,8 @@ document.addEventListener("DOMContentLoaded", function () {
  // Load saved theme from local storage
  const savedTheme = localStorage.getItem("theme");
  if (savedTheme) {
-    const safeTheme = encodeURIComponent(savedTheme);
+    const safeTheme = ((savedTheme != 'default') ? encodeURIComponent(savedTheme) : encodeURIComponent('..'));
-    themeStylesheet.href = `styles/themes/${safeTheme}/bootstrap.min.css`;
+    themeStylesheet.href = `styles/themes/${safeTheme}/bootstrap-min.css`;
  }
  // Initialize Select2 on all select elements with the 'select2' class
--- a/public/styles/themes/cerulean/bootstrap-min.css
+++ b/public/styles/themes/cerulean/bootstrap-min.css
--- a/public/styles/themes/cosmo/bootstrap-min.css
+++ b/public/styles/themes/cosmo/bootstrap-min.css
--- a/public/styles/themes/cyborg/bootstrap-min.css
+++ b/public/styles/themes/cyborg/bootstrap-min.css
--- a/public/styles/themes/darkly/bootstrap-min.css
+++ b/public/styles/themes/darkly/bootstrap-min.css
--- a/public/styles/themes/flatly/bootstrap-min.css
+++ b/public/styles/themes/flatly/bootstrap-min.css
--- a/public/styles/themes/journal/bootstrap-min.css
+++ b/public/styles/themes/journal/bootstrap-min.css
--- a/public/styles/themes/litera/bootstrap-min.css
+++ b/public/styles/themes/litera/bootstrap-min.css
--- a/public/styles/themes/lumen/bootstrap-min.css
+++ b/public/styles/themes/lumen/bootstrap-min.css
--- a/public/styles/themes/lux/bootstrap-min.css
+++ b/public/styles/themes/lux/bootstrap-min.css
--- a/public/styles/themes/materia/bootstrap-min.css
+++ b/public/styles/themes/materia/bootstrap-min.css
--- a/public/styles/themes/minty/bootstrap-min.css
+++ b/public/styles/themes/minty/bootstrap-min.css
--- a/public/styles/themes/morph/bootstrap-min.css
+++ b/public/styles/themes/morph/bootstrap-min.css
--- a/public/styles/themes/pulse/bootstrap-min.css
+++ b/public/styles/themes/pulse/bootstrap-min.css
--- a/public/styles/themes/sandstone/bootstrap-min.css
+++ b/public/styles/themes/sandstone/bootstrap-min.css
--- a/public/styles/themes/simplex/bootstrap-min.css
+++ b/public/styles/themes/simplex/bootstrap-min.css
--- a/public/styles/themes/sketchy/bootstrap-min.css
+++ b/public/styles/themes/sketchy/bootstrap-min.css
--- a/public/styles/themes/solar/bootstrap-min.css
+++ b/public/styles/themes/solar/bootstrap-min.css
--- a/public/styles/themes/spacelab/bootstrap-min.css
+++ b/public/styles/themes/spacelab/bootstrap-min.css
--- a/public/styles/themes/united/bootstrap-min.css
+++ b/public/styles/themes/united/bootstrap-min.css
--- a/public/styles/themes/vapor/bootstrap-min.css
+++ b/public/styles/themes/vapor/bootstrap-min.css
--- a/public/styles/themes/yeti/bootstrap-min.css
+++ b/public/styles/themes/yeti/bootstrap-min.css
--- a/public/styles/themes/zephyr/bootstrap-min.css
+++ b/public/styles/themes/zephyr/bootstrap-min.css
--- a/views/default3.handlebars
+++ b/views/default3.handlebars
@ -14138,10 +14138,9 @@
        function account_switchThemeEx() {
            var themeSwitcher = document.getElementById('theme-switcher');
            const selectedTheme = themeSwitcher.value;
-            const safeTheme = encodeURIComponent(selectedTheme);
+            const safeTheme = ((selectedTheme != 'default') ? encodeURIComponent(selectedTheme) : encodeURIComponent('..'));
            var themeStylesheet = document.getElementById('theme-stylesheet');
-            var newThemeStylesheet = `styles/themes/${safeTheme}/bootstrap.min.css`;
+            themeStylesheet.href = `styles/themes/${safeTheme}/bootstrap-min.css`;
            themeStylesheet.href = newThemeStylesheet;
            // Save selected theme
            putstore('theme', selectedTheme);
            // Update last 4 themes selected
--- a/webserver.js
+++ b/webserver.js
@ -6502,7 +6502,7 @@ module.exports.CreateWebServer = function (parent, db, args, certificates, doneF
                'Referrer-Policy': 'no-referrer',
                'X-XSS-Protection': '1; mode=block',
                'X-Content-Type-Options': 'nosniff',
-                'Content-Security-Policy': "default-src 'none'; font-src 'self'; script-src 'self' 'unsafe-inline'" + extraScriptSrc + "; connect-src 'self'" + geourl + selfurl + "; img-src 'self' blob: data:" + geourl + " data:; style-src 'self' 'unsafe-inline'; frame-src 'self' blob: mcrouter:" + extraFrameSrc + "; media-src 'self'; form-action 'self'; manifest-src 'self'"
+                'Content-Security-Policy': "default-src 'none'; font-src 'self' fonts.gstatic.com data:; script-src 'self' 'unsafe-inline' " + extraScriptSrc + "; connect-src 'self'" + geourl + selfurl + "; img-src 'self' blob: data:" + geourl + " data:; style-src 'self' 'unsafe-inline' fonts.googleapis.com; frame-src 'self' blob: mcrouter:" + extraFrameSrc + "; media-src 'self'; form-action 'self'; manifest-src 'self'"
            };
            if (req.headers['user-agent'] && (req.headers['user-agent'].indexOf('Chrome') >= 0)) { headers['Permissions-Policy'] = 'interest-cohort=()'; } // Remove Google's FLoC Network, only send this if Chrome browser
            if ((parent.config.settings.allowframing !== true) && (typeof parent.config.settings.allowframing !== 'string')) { headers['X-Frame-Options'] = 'sameorigin'; }