CSP Nonce support about scribe HOT 4 CLOSED

I'm not very familiar with CSP nonces. But a simple fix that should work:

• create a prepend.md file in the docs Markdown output folder (resources/docs/) containing just the html you need:

<head>
...
</head>

It's probably an extra head tag, but the browser should parse and handle it correctly.

You can use append.md to achieve similar functionality too.

https://scribe.readthedocs.io/en/latest/customization.html#specifying-content-to-be-added-to-the-beginning-or-end-of-the-documentation

from scribe.

Many thanks @shalvah , unfortunetely that doesn't quite solve the issue, as the problem is the built in script tags. I don't need to add anything new really, i just have to change what's already there.

The following two script tags:

<script>hljs.initHighlightingOnLoad();</script>

and

<script>
  $(function() {
    var languages = ["bash", "javascript"];
    setupLanguages(languages);
  });
</script>

Would change to something like the following:

<script nonce="{{ csp_nonce() }}">hljs.initHighlightingOnLoad();</script>

and

<script nonce="{{ csp_nonce() }}">
  $(function() {
    var languages = ["bash", "javascript"];
    setupLanguages(languages);
  });
</script>

from scribe.

Ah, no easy way to achieve that. Your best bet is writing maybe a shell script to inject it into the generated Blade file.

from scribe.

from scribe.