Niklas Fiekas
aa2273d2fd
use scalatags styles only explicitly
...
fixes accidental inline styles that should have been attributes. thanks @bigsee
2021-12-07 23:02:17 +01:00
Thibault Duplessis
fcd3869da8
show latest blog post on coach page
2021-09-08 10:54:25 +02:00
Thibault Duplessis
cece5c7e19
upload new coach images to picfit
2021-09-08 09:26:04 +02:00
Thibault Duplessis
9c8ae82372
select listable coaches based on associated users
2021-07-08 21:09:28 +02:00
Andrew Mazur
e4db7c25e6
Icons private use area ( #9136 )
...
* move all glyphs to private area
* replace exclamation mark icon
* replace quotation mark icon
* replace rapid icon
* replace share icon
* replace patron icon
* replace gear icon
* replace phone icon
* replace streak icon
* replace die-six and ograve icons
* replace flag icon
* replace flame icon
* replace feather icon
* replace turtle icon
* replace nuclear icon
* replace arrow-streamline-target icon
* replace buffer icon
* replace upload-cloud icon
* replace number and some special characters icons
* replace upper case alphabet characters icons
* replace alphabet characters icons and a few special characters icons
* fixing some missing icons
* notifications icons fix
* a few more icons found
* changing a few more icons
2021-06-14 09:13:27 +02:00
Thibault Duplessis
d389300445
refactor link rel
2021-03-19 22:06:59 +01:00
Thibault Duplessis
42084de5fa
fix routing and form binding for play 2.8.7
2021-02-08 15:25:21 +01:00
Niklas Fiekas
181a755e82
factor out all server-side uses of _target=blank ( #7411 )
...
* noopener for all _target=blank links. Security for untrusted links,
possible minor performance improvement for internal links.
While reviewing, also checked
* nofollow on user provided links
* noreferrer only as defense in depth for links that can appear in
unpredictable locations. Will consider Referrer-Policy for everything
else.
2020-10-04 16:33:03 +02:00
Thibault Duplessis
d40e5b3baf
migrate coach UI and star rating
2020-09-12 20:19:04 +02:00
Thibault Duplessis
1d6efcab0e
compatibility with cash.js WIP
2020-09-09 14:57:36 +02:00
Thibault Duplessis
5be8b166ee
embedJsUnsafeLoadThen
2020-09-04 16:10:30 +02:00
Thibault Duplessis
b48699798d
fix more warnings, getting ready for scala 3
2020-07-07 11:24:08 +02:00
Thibault Duplessis
5488a09548
scalafmt 2.5
2020-05-05 22:11:15 -06:00
Niklas Fiekas
8bbc435673
more rel noopener ( lichess-org/talk#38 )
2020-03-09 13:10:08 +01:00
Thibault Duplessis
7a791660c6
translate /coach public UI
2020-02-09 12:27:56 -06:00
Thibault Duplessis
ad99e3acb1
more msg integration
2020-01-27 17:04:22 -06:00
Thibault Duplessis
ff1cc70bef
reformat with scalafmt
2019-12-13 08:37:32 -06:00
Thibault Duplessis
c0c3948c2b
fix many more warnings
2019-12-08 12:12:00 -06:00
Niklas Fiekas
b6fbf28132
reland embedJs signature fix
...
Sadly this was nicer in Twirl, because *safe* string interpolation was
happening more naturally in templates. This example allows no XSS,
guaranteed by types:
@embedJs {
var foo = { "bar": @{safeJsonValue(jsObj)} };
}
Equivalent with scalatags:
embedJs(frag(
raw("""var foo = { "bar": """), jsObj.toJsonFrag, raw(" }; ")
))
This is so ugly that it's used nowhere. Just unsafe string interpolation
everywhere:
embedJsUnsafe(s"""var foo = { "bar": ${safeJsonValue(jsObj)} };""")
Note that this would compile fine without safeJsonValue, but would be
an XSS vulnerability.
2019-04-22 08:56:55 +02:00
Thibault Duplessis
2f0898a1d6
rename cssTag
2019-04-21 21:33:50 +07:00
Thibault Duplessis
441728940b
fix spacing
2019-04-21 12:21:53 +07:00
Thibault Duplessis
69eae878bf
coach fixes
2019-04-20 08:29:12 +07:00
Niklas Fiekas
28379d9466
fix allowfullscreen boolean attr
2019-04-18 11:46:38 +02:00
Thibault Duplessis
1a5d9dcff8
all pages are responsive now
2019-04-11 17:23:25 +07:00
Thibault Duplessis
fa9d5ecba3
coach integration and settings UI
2019-02-22 15:25:38 +07:00
Thibault Duplessis
9177e2de36
coach editor UI
2019-02-18 21:52:32 +07:00
Thibault Duplessis
a46c8aa912
coach UI
2019-02-18 21:00:18 +07:00