soeren/fotospiel-app
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

Add CSP nonce for Tamagui styles
Some checks failed
linter / quality (push) Has been cancelled
Details
tests / ci (push) Has been cancelled
Details
tests / ui (push) Has been cancelled
Details

Browse Source
This commit is contained in:
Codex Agent
2026-01-24 20:38:36 +01:00
parent 35d8c94c11
commit 2b4d9e9411
2 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
resources/js/admin/main.tsx
View File

@@ -4,6 +4,7 @@ import { RouterProvider } from 'react-router-dom';
import { Toaster } from 'react-hot-toast'; import { Toaster } from 'react-hot-toast';
import { QueryClient, QueryClientProvider } from '@tanstack/react-query'; import { QueryClient, QueryClientProvider } from '@tanstack/react-query';
import { TamaguiProvider, Theme } from '@tamagui/core'; import { TamaguiProvider, Theme } from '@tamagui/core';
import { setNonce } from '@tamagui/web';
import '@tamagui/core/reset.css'; import '@tamagui/core/reset.css';
import tamaguiConfig from '../../../tamagui.config'; import tamaguiConfig from '../../../tamagui.config';
import { AuthProvider } from './auth/context'; import { AuthProvider } from './auth/context';
@@ -23,6 +24,14 @@ const DevTenantSwitcher = React.lazy(() => import('./DevTenantSwitcher'));
const enableDevSwitcher = import.meta.env.DEV || import.meta.env.VITE_ENABLE_TENANT_SWITCHER === 'true'; const enableDevSwitcher = import.meta.env.DEV || import.meta.env.VITE_ENABLE_TENANT_SWITCHER === 'true';
const styleNonce = document
.querySelector('meta[name="csp-style-nonce"]')
?.getAttribute('content');
if (styleNonce) {
setNonce(styleNonce);
}
initializeTheme(); initializeTheme();
initSentry('admin'); initSentry('admin');
const rootEl = document.getElementById('root')!; const rootEl = document.getElementById('root')!;

1
resources/views/admin.blade.php
View File

@@ -7,6 +7,7 @@
<title>{{ __('admin.shell.tenant_admin_title') }}</title> <title>{{ __('admin.shell.tenant_admin_title') }}</title>
<link rel="icon" href="{{ asset('favicon.ico') }}" type="image/x-icon"> <link rel="icon" href="{{ asset('favicon.ico') }}" type="image/x-icon">
<link rel="manifest" href="/manifest.json"> <link rel="manifest" href="/manifest.json">
<meta name="csp-style-nonce" content="{{ $cspStyleNonce }}">
<meta name="theme-color" content="#f43f5e"> <meta name="theme-color" content="#f43f5e">
<meta name="apple-mobile-web-app-capable" content="yes"> <meta name="apple-mobile-web-app-capable" content="yes">
<meta name="apple-mobile-web-app-status-bar-style" content="black-translucent"> <meta name="apple-mobile-web-app-status-bar-style" content="black-translucent">