chore: update Google Charts to v47

php-coder · php-coder · commit a1d8ead4908e · 2020-01-25T13:47:01.000Z
Changelog: https://developers.google.com/chart/interactive/docs/release_notes Fix #1238
diff --git a/src/main/java/ru/mystamps/web/feature/site/ResourceUrl.java b/src/main/java/ru/mystamps/web/feature/site/ResourceUrl.java
@@ -32,7 +32,7 @@ public final class ResourceUrl {
 	public static final String STATIC_RESOURCES_URL = "https://stamps.filezz.ru";
 	
 	// MUST be updated when any of our resources were modified
-	public static final String RESOURCES_VERSION = "v0.4.2.1";
+	public static final String RESOURCES_VERSION = "v0.4.2.2";
 
 	// CheckStyle: ignore LineLength for next 10 lines
 	private static final String CATALOG_UTILS_JS    = "/public/js/" + RESOURCES_VERSION + "/CatalogUtils.min.js";
diff --git a/src/main/java/ru/mystamps/web/support/spring/security/ContentSecurityPolicyHeaderWriter.java b/src/main/java/ru/mystamps/web/support/spring/security/ContentSecurityPolicyHeaderWriter.java
@@ -148,9 +148,8 @@ class ContentSecurityPolicyHeaderWriter implements HeaderWriter {
 	// - 'https://unpkg.com' is required by react/react-dom
 	private static final String SCRIPTS_SERIES_INFO_PAGE = " https://unpkg.com";
 	
-	// - 'unsafe-eval' is required by loader.js from Google Charts
 	// - 'https://www.gstatic.com' is required by Google Charts
-	private static final String SCRIPT_COLLECTION_INFO = " 'unsafe-eval' https://www.gstatic.com";
+	private static final String SCRIPT_COLLECTION_INFO = " https://www.gstatic.com";
 	
 	// - 'self' is required for AJAX requests from our scripts
 	// (country suggestions on /series/add and series sale import on /series/{id})
diff --git a/src/main/javascript/collection/info.js b/src/main/javascript/collection/info.js
@@ -4,7 +4,7 @@
 //
 
 function initPage(statByCategories, statByCountries) {
-	var chartsVersion = '44';
+	var chartsVersion = '47';
 	google.charts.load(chartsVersion, {'packages':['corechart']});
 	google.charts.setOnLoadCallback(function drawCharts() {
 		drawChart('categories-chart', createDataTable(statByCategories));
diff --git a/src/test/java/ru/mystamps/web/support/spring/security/ContentSecurityPolicyHeaderWriterTest.java b/src/test/java/ru/mystamps/web/support/spring/security/ContentSecurityPolicyHeaderWriterTest.java
@@ -144,7 +144,6 @@ public void onCollectionInfoPageWithLocalResources() {
 					+ "'report-sample' "
 					+ "'unsafe-inline' "
 					+ "'self' "
-					+ "'unsafe-eval' "
 					+ "https://www.gstatic.com"
 			)
 			// hope that all other directives are the same as on the index page
@@ -175,7 +174,6 @@ public void onCollectionInfoPageWithResourcesFromCdn() {
 					+ "https://stamps.filezz.ru "
 					+ "https://maxcdn.bootstrapcdn.com "
 					+ "https://yandex.st "
-					+ "'unsafe-eval' "
 					+ "https://www.gstatic.com"
 			)
 			// hope that all other directives are the same as on the index page
