RubyGems - karafka-web - Versions diffs - 0.5.0 → 0.5.1 - Mend

karafka-web 0.5.0 → 0.5.1

Files changed (9) hide show

checksums.yaml CHANGED Viewed

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 9edb576f473624295de9b0f1d62cbed131c9be1b480958a63c33f891fbf7cb19
-  data.tar.gz: 4f71e3a6ce1ca6eb423550824c5381e3b2b237c1b2af88c9108359bd225a7444
+  metadata.gz: 94f427e8f2dc9caf0e031ec3f0f4ef92185ffab89715fa91f71d620062255d45
+  data.tar.gz: 7f0f4ea4199f73011fd06bc7d06a1282312bace48fb16abcb93d1796483977b7
 SHA512:
-  metadata.gz: 7e0f77ed2a8e6c902596d2fad16938c3117a49c3faa7d9c60e8018c24135b9c3f38e45ffe5a0aa6fffdbf6f514956d4122afbb90a021f0c6f6274e0cb5212e75
-  data.tar.gz: 6fc0272d850dcdd99c277dabb38c5a0761646709f679b794f5c4b8161eb9217439f087b7d3eba3763bec60902874413506c6492dbb9ee63a992a0b6674124689
+  metadata.gz: d7a31d203b3574955215a391f6be9538d2e31cc67a749fc63fa969288b2826a033d8b50532214649b5d0a9a682fecc166f1551d249219e731b90f69cdc98ef19
+  data.tar.gz: 6d9824c76559fc2903985152d6a94a3936b03c9c3c22283daf5a748bd2d140a5ba25d344dc55f745f66553f78086f96cde36e4db2104055b3ae01a5c106059b9

checksums.yaml.gz.sig CHANGED Viewed

Binary file

data/CHANGELOG.md CHANGED Viewed

@@ -1,6 +1,9 @@
 # Karafka Web changelog
-## 0.5.0 (2022-04-13)
+## 0.5.1 (2023-04-16)
+- [Fix] Use CSP header matching Sidekiq one to ensure styles and js loading (#55)
+## 0.5.0 (2023-04-13)
 - [Improvement] Report job `-1001` offsets as `N/A` as in all the other places.
 - [Fix] Fix misspelling of word `committed`.
 - [Fix] Shutdown and revocation jobs statistics extraction crashes when idle initialized without messages (#53)

data/Gemfile.lock CHANGED Viewed

@@ -1,7 +1,7 @@
 PATH
   remote: .
   specs:
-    karafka-web (0.5.0)
+    karafka-web (0.5.1)
       erubi (~> 1.4)
       karafka (>= 2.0.40, < 3.0.0)
       karafka-core (>= 2.0.12, < 3.0.0)
@@ -45,7 +45,7 @@ GEM
       rack (>= 3.0.0.beta1)
       webrick
     rake (13.0.6)
-    roda (3.66.0)
+    roda (3.67.0)
       rack
     rspec (3.12.0)
       rspec-core (~> 3.12.0)
@@ -89,4 +89,4 @@ DEPENDENCIES
   simplecov
 BUNDLED WITH
-   2.4.10
+   2.4.12

data/lib/karafka/web/ui/base.rb CHANGED Viewed

@@ -25,6 +25,24 @@ module Karafka
         plugin :not_found
         plugin :path
+        # Based on
+        # https://github.com/sidekiq/sidekiq/blob/ae6ca119/lib/sidekiq/web/application.rb#L8
+        plugin :content_security_policy do |csp|
+          csp.default_src "'self' https: http:"
+          csp.child_src "'self'"
+          csp.connect_src "'self' https: http: wss: ws:"
+          csp.font_src "'self' https: http:"
+          csp.frame_src "'self'"
+          csp.img_src "'self' https: http: data:"
+          csp.manifest_src "'self'"
+          csp.media_src "'self'"
+          csp.object_src "'none'"
+          csp.script_src "'self' https: http: 'unsafe-inline'"
+          csp.style_src "'self' https: http: 'unsafe-inline'"
+          csp.worker_src "'self'"
+          csp.base_uri "'self'"
+        end
         # Display appropriate error specific to a given error type
         plugin :error_handler, classes: [
           ::Karafka::Web::Errors::Ui::NotFoundError,

data/lib/karafka/web/version.rb CHANGED Viewed

@@ -3,6 +3,6 @@
 module Karafka
   module Web
     # Current gem version
-    VERSION = '0.5.0'
+    VERSION = '0.5.1'
   end
 end

data.tar.gz.sig CHANGED Viewed

Binary file

metadata CHANGED Viewed

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: karafka-web
 version: !ruby/object:Gem::Version
-  version: 0.5.0
+  version: 0.5.1
 platform: ruby
 authors:
 - Maciej Mensfeld
@@ -35,7 +35,7 @@ cert_chain:
   Qf04B9ceLUaC4fPVEz10FyobjaFoY4i32xRto3XnrzeAgfEe4swLq8bQsR3w/EF3
   MGU0FeSV2Yj7Xc2x/7BzLK8xQn5l7Yy75iPF+KP3vVmDHnNl
   -----END CERTIFICATE-----
-date: 2023-04-13 00:00:00.000000000 Z
+date: 2023-04-16 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: erubi

metadata.gz.sig CHANGED Viewed

Binary file