More CssStyleApplier updates (#1785)

* Update eslint rules for css-style-applier.js * Don't use chrome.runtime.getURL * Update CSP to allow inline styles
2021-07-02 22:12:02 -04:00 · 2021-07-02 22:12:02 -04:00 · a4715935cb
commit a4715935cb
parent 56b2462f13
4 changed files with 6 additions and 3 deletions
--- a/.eslintrc.json
+++ b/.eslintrc.json
@ -112,6 +112,7 @@
                "ext/js/core.js",
                "ext/js/data/anki-note-data-creator.js",
                "ext/js/display/structured-content-generator.js",
+                "ext/js/dom/css-style-applier.js",
                "ext/js/language/dictionary-data-util.js",
                "ext/js/templates/template-renderer.js"
            ],
@ -125,6 +126,7 @@
                "ext/js/core.js",
                "ext/js/data/anki-note-data-creator.js",
                "ext/js/display/structured-content-generator.js",
+                "ext/js/dom/css-style-applier.js",
                "ext/js/language/dictionary-data-util.js",
                "ext/js/templates/template-renderer.js"
            ],
@ -155,6 +157,7 @@
                "ext/js/yomichan.js",
                "ext/js/data/anki-note-data-creator.js",
                "ext/js/display/structured-content-generator.js",
+                "ext/js/dom/css-style-applier.js",
                "ext/js/language/dictionary-data-util.js",
                "ext/js/templates/template-renderer.js"
            ],
--- a/dev/data/manifest-variants.json
+++ b/dev/data/manifest-variants.json
@ -73,7 +73,7 @@
            "pages": [
                "template-renderer.html"
            ],
-            "content_security_policy": "sandbox allow-scripts; default-src 'self'; script-src 'self' 'unsafe-eval'"
+            "content_security_policy": "sandbox allow-scripts; default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'unsafe-inline'"
        },
        "permissions": [
            "<all_urls>",
--- a/ext/js/dom/css-style-applier.js
+++ b/ext/js/dom/css-style-applier.js
@ -83,7 +83,7 @@ class CssStyleApplier {
    // Private

    async _fetchJsonAsset(url) {
-        const response = await fetch(chrome.runtime.getURL(url), {
+        const response = await fetch(url, {
            method: 'GET',
            mode: 'no-cors',
            cache: 'default',
--- a/ext/manifest.json
+++ b/ext/manifest.json
@ -72,7 +72,7 @@
        "pages": [
            "template-renderer.html"
        ],
-        "content_security_policy": "sandbox allow-scripts; default-src 'self'; script-src 'self' 'unsafe-eval'"
+        "content_security_policy": "sandbox allow-scripts; default-src 'self'; script-src 'self' 'unsafe-eval'; style-src 'unsafe-inline'"
    },
    "permissions": [
        "<all_urls>",