Upgrade Rails to version 5.2.0 (#5898)
parent
8e88a18316
commit
50529cbceb
22 changed files with 330 additions and 262 deletions
@ -1,3 +1,3 @@ |
||||
#!/usr/bin/env ruby |
||||
ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../../Gemfile', __FILE__) |
||||
ENV['BUNDLE_GEMFILE'] ||= File.expand_path('../Gemfile', __dir__) |
||||
load Gem.bin_path('bundler', 'bundle') |
||||
|
@ -0,0 +1,11 @@ |
||||
#!/usr/bin/env ruby |
||||
APP_ROOT = File.expand_path('..', __dir__) |
||||
Dir.chdir(APP_ROOT) do |
||||
begin |
||||
exec "yarnpkg #{ARGV.join(' ')}" unless Dir.exist?('node_modules') |
||||
rescue Errno::ENOENT |
||||
$stderr.puts "Yarn executable was not detected in the system." |
||||
$stderr.puts "Download Yarn at https://yarnpkg.com/en/docs/install" |
||||
exit 1 |
||||
end |
||||
end |
@ -0,0 +1,20 @@ |
||||
# Define an application-wide content security policy |
||||
# For further information see the following documentation |
||||
# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy |
||||
|
||||
# Rails.application.config.content_security_policy do |p| |
||||
# p.default_src :self, :https |
||||
# p.font_src :self, :https, :data |
||||
# p.img_src :self, :https, :data |
||||
# p.object_src :none |
||||
# p.script_src :self, :https |
||||
# p.style_src :self, :https, :unsafe_inline |
||||
# |
||||
# # Specify URI for violation reports |
||||
# # p.report_uri "/csp-violation-report-endpoint" |
||||
# end |
||||
|
||||
# Report CSP violations to a specified URI |
||||
# For further information see the following documentation: |
||||
# https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy-Report-Only |
||||
# Rails.application.config.content_security_policy_report_only = true |
@ -0,0 +1,26 @@ |
||||
# Be sure to restart your server when you modify this file. |
||||
|
||||
# Avoid CORS issues when API is called from the frontend app. |
||||
# Handle Cross-Origin Resource Sharing (CORS) in order to accept cross-origin AJAX requests. |
||||
|
||||
# Read more: https://github.com/cyu/rack-cors |
||||
|
||||
Rails.application.config.middleware.insert_before 0, Rack::Cors do |
||||
allow do |
||||
origins '*' |
||||
|
||||
resource '/@:username', |
||||
headers: :any, |
||||
methods: [:get], |
||||
credentials: false |
||||
resource '/api/*', |
||||
headers: :any, |
||||
methods: [:post, :put, :delete, :get, :patch, :options], |
||||
credentials: false, |
||||
expose: ['Link', 'X-RateLimit-Reset', 'X-RateLimit-Limit', 'X-RateLimit-Remaining', 'X-Request-Id'] |
||||
resource '/oauth/token', |
||||
headers: :any, |
||||
methods: [:post], |
||||
credentials: false |
||||
end |
||||
end |
Loading…
Reference in new issue