admin/e-ticket
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
10d905188094fd7cc395c342f9eb88f999d5b9e5
e-ticket/assets/modules
History
Serreau Jovann 10d9051880 Remove inline script from API doc, add CSP policy section 
Security:
- Move env switcher logic to assets/modules/api-env-switcher.js (no inline script)
- Register in app.js via initApiEnvSwitcher()
- Compliant with CSP script-src (no unsafe-inline needed for this page)

API doc:
- Add CSP policy section showing all authorized origins per directive
- Table: script-src, connect-src, style-src, img-src, font-src, frame-src, form-action, object-src, worker-src
- Note: inline scripts not allowed, must use nonce or external file

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-23 19:02:28 +01:00
..
api-env-switcher.js
Remove inline script from API doc, add CSP policy section
2026-03-23 19:02:28 +01:00
billet-designer.js
Complete TASK_CHECKUP: security, UX, tests, coverage, accessibility, config externalization
2026-03-23 11:14:06 +01:00
cart.js
Reduce cognitive complexity, improve test coverage, fix SonarQube issues
2026-03-23 12:57:00 +01:00
commission-calculator.js
Deduplicate AccountController: extract hydrateBilletFromRequest, EVENT_BASE_URL constant, move formatEur to outer scope
2026-03-21 13:10:40 +01:00
cookie-consent.js
Disable analytics in dev env, redirect to edit page after event update
2026-03-20 22:39:38 +01:00
copy-url.js
Extract initCopyUrl to module, add tests for copy-url and event-map coverage
2026-03-20 21:37:12 +01:00
editor.js
Complete TASK_CHECKUP: security, UX, tests, coverage, accessibility, config externalization
2026-03-23 11:14:06 +01:00
event-map.js
Fix ESLint globals, parseFloat to Number.parseFloat, label for, add AccountController coverage tests
2026-03-20 21:25:53 +01:00
mobile-menu.js
Add JS tests, refactor SitemapController, extract JS modules
2026-03-19 00:19:34 +01:00
share.js
Remove console.error in share.js (ESLint no-console)
2026-03-23 18:45:22 +01:00
sortable.js
Complete TASK_CHECKUP: security, UX, tests, coverage, accessibility, config externalization
2026-03-23 11:14:06 +01:00
stripe-payment.js
Complete TASK_CHECKUP: security, UX, tests, coverage, accessibility, config externalization
2026-03-23 11:14:06 +01:00
tabs.js
Reduce cognitive complexity, improve test coverage, fix SonarQube issues
2026-03-23 12:57:00 +01:00