mirrors/TiddlyWiki5
1
0
Fork 0
mirror of https://github.com/Jermolene/TiddlyWiki5 synced 2024-11-27 03:57:21 +00:00
Code Issues Releases Wiki Activity

Update HTML parser to use an IFRAME

Browse Source 
Gives us better sandboxing of unsafe HTML content
This commit is contained in:
Jermolene 2014-06-11 23:04:58 +01:00
parent d2796d0c9c
commit f131c37893
2 changed files with 18 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
core/modules/parsers/htmlparser.js
View File

@ -13,9 +13,18 @@ The HTML parser displays text as raw HTML
"use strict";
var HtmlParser = function(type,text,options) {
var src;
if(options._canonical_uri) {
src = options._canonical_uri;
} else if(text) {
src = "data:text/html," + encodeURIComponent(text);
}
this.tree = [{
type: "raw",
html: text
type: "element",
tag: "iframe",
attributes: {
src: {type: "string", value: src}
}
}];
};

9
themes/tiddlywiki/vanilla/base.tid
View File

@ -117,11 +117,16 @@ table tfoot tr td {
white-space: nowrap;
}
.tw-tiddler-frame img, .tw-tiddler-frame svg, .tw-tiddler-frame canvas, .tw-tiddler-frame embed {
.tw-tiddler-frame img,
.tw-tiddler-frame svg,
.tw-tiddler-frame canvas,
.tw-tiddler-frame embed,
.tw-tiddler-frame iframe {
max-width: 100%;
}
.tw-tiddler-frame embed {
.tw-tiddler-frame embed,
.tw-tiddler-frame iframe {
width: 100%;
height: 600px;
}