modified: web/app.py

modified: web/templates/admin/base.html modified: web/templates/auth/admin_login.html modified: web/templates/auth/login.html modified: web/templates/base.html modified: web/templates/group_admin/base.html new file: web/templates/privacy_policy.html
2026-04-14 12:33:51 +02:00
parent 8f614a08cc
commit 452d50e5b5
7 changed files with 240 additions and 0 deletions
--- a/web/app.py
+++ b/web/app.py
@@ -66,6 +66,15 @@ def create_app() -> Flask:
        resp.headers.setdefault("Content-Security-Policy", "default-src 'self'; script-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; img-src 'self' data:; font-src 'self' https://cdn.jsdelivr.net; connect-src 'self'; frame-ancestors 'none';")
        return resp

+    @app.route("/privacy-policy")
+    def privacy_policy():
+        from config import Config
+        return render_template(
+            "privacy_policy.html",
+            last_updated="April 14, 2026",
+            invite_expiry_hours=Config.INVITE_EXPIRY_HOURS,
+        )
+
    @app.errorhandler(400)
    def bad_request(_):
        return "Bad request", 400