Merge branch 'develop' of dev.funkwhale.audio:funkwhale/funkwhale into develop

2019-08-19 12:05:30 +02:00 · 2019-08-19 12:05:30 +02:00 · 8dc6342669
commit 8dc6342669
--- a/changes/changelog.d/710.add-track-dropdown
+++ b/changes/changelog.d/710.add-track-dropdown
@ -0,0 +1 @@
+Add dropdown menu to track table (#531)
--- a/changes/notes.rst
+++ b/changes/notes.rst
@ -78,6 +78,14 @@ Content-Security-Policy and additional security headers [manual action suggested
 To improve the security and reduce the attack surface in case of a successfull exploit, we suggest
 you add the following Content-Security-Policy to your nginx configuration.

+..note::
+    
+    If you are using an S3-compatible store to serve music, you will need to specify the URL of your S3 store in the ``media-src`` and ``img-src`` headers
+
+    .. code-block::
+    
+        add_header Content-Security-Policy "...img-src 'self' https://<your-s3-URL> data:;...media-src https://<your-s3-URL> 'self' data:";
+
 **On non-docker setups**, in ``/etc/nginx/sites-available/funkwhale.conf``::

    server {
--- a/deploy/docker.nginx.template
+++ b/deploy/docker.nginx.template
@ -23,6 +23,9 @@ server {

    root /frontend;

+    # If you are using S3 to host your files, remember to add your S3 URL to the
+    # media-src and img-src headers (e.g. img-src 'self' https://<your-S3-URL> data:)
+
    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
    add_header Referrer-Policy "strict-origin-when-cross-origin";

--- a/deploy/docker.proxy.template
+++ b/deploy/docker.proxy.template
@ -30,6 +30,10 @@ server {
    add_header Strict-Transport-Security "max-age=31536000";

    # Security related headers
+
+    # If you are using S3 to host your files, remember to add your S3 URL to the
+    # media-src and img-src headers (e.g. img-src 'self' https://<your-S3-URL> data:)
+
    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";

    # compression settings
--- a/deploy/nginx.template
+++ b/deploy/nginx.template
@ -41,6 +41,9 @@ server {
    # HSTS
    add_header Strict-Transport-Security "max-age=31536000";

+    # If you are using S3 to host your files, remember to add your S3 URL to the
+    # media-src and img-src headers (e.g. img-src 'self' https://<your-S3-URL> data:)
+
    add_header Content-Security-Policy "default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self' data:; object-src 'none'; media-src 'self' data:";
    add_header Referrer-Policy "strict-origin-when-cross-origin";

--- a/docs/admin/external-storages.rst
+++ b/docs/admin/external-storages.rst
@ -45,6 +45,12 @@ Replace the ``location /_protected/media`` block with the following::
        proxy_pass $1;
    }

+Add your S3 store URL to the ``img-src`` and ``media-src`` headers
+
+.. code-block:: shell
+
+    add_header Content-Security-Policy "...img-src 'self' https://<your-s3-URL> data:;...media-src https://<your-s3-URL> 'self' data:";
+
 Then restart Funkwhale and nginx.

 From now on, media files will be stored on the S3 bucket you configured. If you already
@ -141,3 +147,22 @@ in your ``funkwhale.template`` under the ``location ~/_protected/media/(.+)`` se
     proxy_pass $1;
    }

+No Images or Media Loading
+^^^^^^^^^^^^^^^^^^^^^^^^^^
+
+If you are serving media from an S3-compatible store, you may experience an issue where
+nothing loads in the front end. The error logs in your browser may show something like
+the following:
+
+.. code-block:: text
+
+    Content Security Policy: The page's settings blocked the loading of a resource at https://<your-s3-url> ("img-src")
+    Content Security Policy: The page's settings blocked the loading of a resource at https://<your-s3-url> ("media-src")
+
+This happens when your S3 store isn't defined in the ``Content-Security-Policy`` headers
+in your Nginx files. To resolve the issue, add the base URL of your S3 store to the ``img-src``
+and ``media-src`` headers and reload nginx.
+
+.. code-block:: shell
+
+    add_header Content-Security-Policy "...img-src 'self' https://<your-s3-URL> data:;...media-src https://<your-s3-URL> 'self' data:";
--- a/docs/installation/docker.rst
+++ b/docs/installation/docker.rst
@ -150,6 +150,11 @@ Useful commands:
            ports:
              - "5000:80"

+    Then start the container:
+
+    .. code-block:: shell
+
+        docker-compose up -d

 .. _docker-multi-container:

--- a/front/src/components/audio/track/Row.vue
+++ b/front/src/components/audio/track/Row.vue
@ -42,6 +42,13 @@
    </td>
    <td colspan="2" class="align right">
      <track-favorite-icon class="favorite-icon" :track="track"></track-favorite-icon>
+      <play-button
+        class="play-button basic icon"
+        :dropdown-only="true"
+        :is-playable="track.is_playable"
+        :dropdown-icon-classes="['ellipsis', 'vertical', 'large', 'grey']"
+        :track="track"
+      ></play-button>
      <track-playlist-icon
        v-if="$store.state.auth.authenticated"
        :track="track"></track-playlist-icon>
--- a/front/src/components/audio/track/Table.vue
+++ b/front/src/components/audio/track/Table.vue
@ -85,4 +85,7 @@ tr:not(:hover) .favorite-icon:not(.favorited) {
 pre {
  overflow-x: scroll;
 }
+.table-wrapper {
+  overflow: visible;
+}
 </style>
--- a/front/src/style/_main.scss
+++ b/front/src/style/_main.scss
@ -364,11 +364,6 @@ input + .help {
  margin-top: 0.5em;
 }

-.table td .ui.dropdown {
-  min-width: 150px;
-}
-
-
 .tag-list {
  margin-top: 0.5em;
 }