mai
/
posimai-brief
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: mai:64e2f479e9072263d30ee79bd8af63bfd7808cea
Branches Tags
mai:main
...
compare: mai:13c76e3a9f486af19f8469fb12ab447a7757dce0
Branches Tags
mai:main

2 Commits
64e2f479e9 ... 13c76e3a9f

Author SHA1 Message Date
posimai 13c76e3a9f fix: magic link JWT (?token=) を先頭スクリプトで localStorage に保存 
Made-with: Cursor
 2026-04-21 09:16:38 +09:00
posimai 2a8bfb7306 fix(csp): style-src に posimai-ui.vercel.app を追加(base.css ブロック修正) 
Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
 2026-04-21 08:26:35 +09:00
2 changed files with 9 additions and 2 deletions
Show Stats Expand all files Collapse all files

9
index.html
View File

@ -6,11 +6,18 @@
<script> <script>
(function () { (function () {
const p = new URLSearchParams(location.search); const p = new URLSearchParams(location.search);
const tk = p.get('token');
if (tk) {
localStorage.setItem('posimai_token', tk);
p.delete('token');
}
const k = p.get('init_key'); const k = p.get('init_key');
if (k) { if (k) {
localStorage.setItem('posimai-brief-apikey', k); localStorage.setItem('posimai-brief-apikey', k);
p.delete('init_key'); p.delete('init_key');
const u = location.pathname + (p.toString() ? '?' + p : ''); }
if (tk || k) {
const u = location.pathname + (p.toString() ? '?' + p.toString() : '') + location.hash;
history.replaceState({}, '', u); history.replaceState({}, '', u);
} }
const t = localStorage.getItem('posimai-brief-theme') || 'system'; const t = localStorage.getItem('posimai-brief-theme') || 'system';

2
vercel.json
View File

@ -30,7 +30,7 @@
}, },
{ {
"key": "Content-Security-Policy", "key": "Content-Security-Policy",
"value": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://unpkg.com https://cdn.jsdelivr.net https://esm.sh; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://fonts.gstatic.com; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https:; media-src 'self' https:; connect-src 'self' https://api.soar-enrich.com wss://api.soar-enrich.com https:; worker-src 'self'; frame-ancestors 'none';" "value": "default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://unpkg.com https://cdn.jsdelivr.net https://esm.sh; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://fonts.gstatic.com https://posimai-ui.vercel.app; font-src 'self' data: https://fonts.gstatic.com; img-src 'self' data: https:; media-src 'self' https:; connect-src 'self' https://api.soar-enrich.com wss://api.soar-enrich.com https:; worker-src 'self'; frame-ancestors 'none';"
}, },
{ {
"key": "Strict-Transport-Security", "key": "Strict-Transport-Security",