ekzyis/stacker.news
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: ekzyis:b6e4f9766884cc648abc0001a16206ed55670a83
Branches Tags
ekzyis:master
ekzyis:wallet-interface
ekzyis:webln-refactor
ekzyis:489-account-switching
..
compare: ekzyis:2503a3cb6a1f9859589908460dfa741ae78aacd5
Branches Tags
ekzyis:master
ekzyis:wallet-interface
ekzyis:webln-refactor
ekzyis:489-account-switching

No commits in common. "b6e4f9766884cc648abc0001a16206ed55670a83" and "2503a3cb6a1f9859589908460dfa741ae78aacd5" have entirely different histories.
b6e4f97668 ... 2503a3cb6a

5 changed files with 7 additions and 8 deletions
Show Stats Expand all files Collapse all files

2
docker-compose.yml
View File

@ -535,7 +535,7 @@ services:
entrypoint:
- 'nostr-wallet-connect-lnd'
- '--relay'
- 'wss://relay.primal.net'
- 'wss://relay.damus.io'
- '--macaroon-file'
- '/root/.lnd/regtest/admin.macaroon'
- '--cert-file'

2
middleware.js
View File

@ -91,7 +91,7 @@ export function middleware (request) {
// Using nonces and strict-dynamic deploys a strict CSP.
// see https://cheatsheetseries.owasp.org/cheatsheets/Content_Security_Policy_Cheat_Sheet.html#strict-policy.
// Old browsers will ignore nonce and strict-dynamic and fallback to host-based matching and unsafe-inline
`script-src 'self' a.stacker.news 'unsafe-inline' 'wasm-unsafe-eval' 'nonce-${nonce}' 'strict-dynamic' https:` + devScriptSrc,
`script-src 'self' 'unsafe-inline' 'wasm-unsafe-eval' 'nonce-${nonce}' 'strict-dynamic' https:` + devScriptSrc,
// unsafe-inline for styles is not ideal but okay if script-src is using nonces
"style-src 'self' a.stacker.news 'unsafe-inline'",
"manifest-src 'self'",

2
wallets/nwc/ATTACH.md
View File

@ -1,7 +1,7 @@
Use this NWC string to attach the wallet for payments:
```
nostr+walletconnect://5224c44600696216595a70982ee7387a04bd66248b97fefb803f4ed6d4af1972?relay=wss%3A%2F%2Frelay.primal.net&secret=0d1ef06059c9b1acf8c424cfe357c5ffe2d5f3594b9081695771a363ee716b67
nostr+walletconnect://5224c44600696216595a70982ee7387a04bd66248b97fefb803f4ed6d4af1972?relay=wss%3A%2F%2Frelay.damus.io&secret=0d1ef06059c9b1acf8c424cfe357c5ffe2d5f3594b9081695771a363ee716b67
```
This won't work for receives since it allows `pay_invoice`.

6
worker/index.js
View File

@ -1,6 +1,5 @@
// environment variables are loaded from files and imports run before the rest of the code
import './loadenv.js'
import PgBoss from 'pg-boss'
import nextEnv from '@next/env'
import createPrisma from '@/lib/create-prisma.js'
import {
autoDropBolt11s, checkInvoice, checkPendingDeposits, checkPendingWithdrawals,
@ -35,8 +34,11 @@ import {
import { thisDay } from './thisDay.js'
import { isServiceEnabled } from '@/lib/sndev.js'
const { loadEnvConfig } = nextEnv
const { ApolloClient, HttpLink, InMemoryCache } = apolloClient
loadEnvConfig('.', process.env.NODE_ENV === 'development')
async function work () {
const boss = new PgBoss(process.env.DATABASE_URL)
const models = createPrisma({

3
worker/loadenv.js
View File

@ -1,3 +0,0 @@
import nextEnv from '@next/env'
const { loadEnvConfig } = nextEnv
loadEnvConfig('.', process.env.NODE_ENV === 'development')