Merge branch 'develop' of dev.funkwhale.audio:funkwhale/funkwhale into develop

2019-08-19 12:05:30 +02:00 · 2019-08-19 12:05:30 +02:00 · 8dc6342669
parent 5dbbc9d383 a01d7a4efa
commit 8dc6342669
10 changed files with 59 additions and 5 deletions
--- a/changes/changelog.d/710.add-track-dropdown
+++ b/changes/changelog.d/710.add-track-dropdown
@ -0,0 +1 @@
 Add dropdown menu to track table (#531)
--- a/changes/notes.rst
+++ b/changes/notes.rst
@ -78,6 +78,14 @@ Content-Security-Policy and additional security headers [manual action suggested
 To improve the security and reduce the attack surface in case of a successfull exploit, we suggest
 you add the following Content-Security-Policy to your nginx configuration.
 ..note::
    If you are using an S3-compatible store to serve music, you will need to specify the URL of your S3 store in the ``media-src`` and ``img-src`` headers
    .. code-block::
        add_header Content-Security-Policy "...img-src 'self' https://<your-s3-URL> data:;...media-src https://<your-s3-URL> 'self' data:";
 **On non-docker setups**, in ``/etc/nginx/sites-available/funkwhale.conf``::
    server {
--- a/deploy/docker.nginx.template
+++ b/deploy/docker.nginx.template
@ -23,6 +23,9 @@ server {
    root /frontend;
    # If you are using S3 to host your files, remember to add your S3 URL to the
    # media-src and img-src headers (e.g. img-src 'self' https://<your-S3-URL> data:)
    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
    add_header Referrer-Policy "strict-origin-when-cross-origin";
--- a/deploy/docker.proxy.template
+++ b/deploy/docker.proxy.template
@ -30,6 +30,10 @@ server {
    add_header Strict-Transport-Security "max-age=31536000";
    # Security related headers
    # If you are using S3 to host your files, remember to add your S3 URL to the
    # media-src and img-src headers (e.g. img-src 'self' https://<your-S3-URL> data:)
    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
    # compression settings
--- a/deploy/nginx.template
+++ b/deploy/nginx.template
@ -41,6 +41,9 @@ server {
    # HSTS
    add_header Strict-Transport-Security "max-age=31536000";
    # If you are using S3 to host your files, remember to add your S3 URL to the
    # media-src and img-src headers (e.g. img-src 'self' https://<your-S3-URL> data:)
    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
    add_header Referrer-Policy "strict-origin-when-cross-origin";
--- a/docs/admin/external-storages.rst
+++ b/docs/admin/external-storages.rst
@ -45,6 +45,12 @@ Replace the ``location /_protected/media`` block with the following::
        proxy_pass $1;
    }
 Add your S3 store URL to the ``img-src`` and ``media-src`` headers
 .. code-block:: shell
    add_header Content-Security-Policy "...img-src 'self' https://<your-s3-URL> data:;...media-src https://<your-s3-URL> 'self' data:";
 Then restart Funkwhale and nginx.
 From now on, media files will be stored on the S3 bucket you configured. If you already
@ -141,3 +147,22 @@ in your ``funkwhale.template`` under the ``location ~/_protected/media/(.+)`` se
     proxy_pass $1;
    }
 No Images or Media Loading
 ^^^^^^^^^^^^^^^^^^^^^^^^^^
 If you are serving media from an S3-compatible store, you may experience an issue where
 nothing loads in the front end. The error logs in your browser may show something like
 the following:
 .. code-block:: text
    Content Security Policy: The page's settings blocked the loading of a resource at https://<your-s3-url> ("img-src")
    Content Security Policy: The page's settings blocked the loading of a resource at https://<your-s3-url> ("media-src")
 This happens when your S3 store isn't defined in the ``Content-Security-Policy`` headers
 in your Nginx files. To resolve the issue, add the base URL of your S3 store to the ``img-src``
 and ``media-src`` headers and reload nginx.
 .. code-block:: shell
    add_header Content-Security-Policy "...img-src 'self' https://<your-s3-URL> data:;...media-src https://<your-s3-URL> 'self' data:";
--- a/docs/installation/docker.rst
+++ b/docs/installation/docker.rst
@ -150,6 +150,11 @@ Useful commands:
            ports:
              - "5000:80"
    Then start the container:
    .. code-block:: shell
        docker-compose up -d
 .. _docker-multi-container:
--- a/front/src/components/audio/track/Row.vue
+++ b/front/src/components/audio/track/Row.vue
@ -42,6 +42,13 @@
    </td>
    <td colspan="2" class="align right">
      <track-favorite-icon class="favorite-icon" :track="track"></track-favorite-icon>
      <play-button
        class="play-button basic icon"
        :dropdown-only="true"
        :is-playable="track.is_playable"
        :dropdown-icon-classes="['ellipsis', 'vertical', 'large', 'grey']"
        :track="track"
      ></play-button>
      <track-playlist-icon
        v-if="$store.state.auth.authenticated"
        :track="track"></track-playlist-icon>
--- a/front/src/components/audio/track/Table.vue
+++ b/front/src/components/audio/track/Table.vue
@ -85,4 +85,7 @@ tr:not(:hover) .favorite-icon:not(.favorited) {
 pre {
  overflow-x: scroll;
 }
 .table-wrapper {
  overflow: visible;
 }
 </style>
--- a/front/src/style/_main.scss
+++ b/front/src/style/_main.scss
@ -364,11 +364,6 @@ input + .help {
  margin-top: 0.5em;
 }
 .table td .ui.dropdown {
  min-width: 150px;
 }
 .tag-list {
  margin-top: 0.5em;
 }