Feature Request: customizable CSS
It would be great if admins could provide some custom css, e.g. to mitigate the showstopper #135 (closed) without patching.
Not familiar with Django - which seems not to use a sophisticated asset pipeline in this case -, I think the cheapest solution would be this:
- Create a file (e.g.
BBBatScale/static/bbbatscale-custom.css
) with a comment/explanation about the file. - In the
base
andlogin
template, include<link rel="stylesheet" href="{% static 'bbbatscale-custom.css' %}">
- Document how to use the file and how to mount it in a docker container.
Afaiu, this would reflect custom changes in the file with every request (asuming a sane, default webserver) without having to check if files exist or querying the database (logic-less). It is an additional request per page view, but I think these are affordable costs.
While including user provided stuff can always generate security and/or privacy issues (e.g. including a tracking pixel), this simple approach adds no additional attack vectors (at least I don't see any right now, feel free to comment), except for the Docker case - but if the attacker has already write access to the relevant file on the Docker host, either the file permissions are "wrong" or the ship is lost already anyway.
Or is there already a somewhat clean way to achieve css overrides?