projects / yaffs-website / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Security update for Core, with self-updated composer
[yaffs-website] / web / core / misc / drupalSettingsLoader.es6.js
1 /**
2  * @file
3  * Parse inline JSON and initialize the drupalSettings global object.
4  */
5
6 (function () {
7   // Use direct child elements to harden against XSS exploits when CSP is on.
8   const settingsElement = document.querySelector('head > script[type="application/json"][data-drupal-selector="drupal-settings-json"], body > script[type="application/json"][data-drupal-selector="drupal-settings-json"]');
9
10   /**
11    * Variable generated by Drupal with all the configuration created from PHP.
12    *
13    * @global
14    *
15    * @type {object}
16    */
17   window.drupalSettings = {};
18
19   if (settingsElement !== null) {
20     window.drupalSettings = JSON.parse(settingsElement.textContent);
21   }
22 }());
Unnamed repository; edit this file 'description' to name the repository.