Uploaded image for project: 'Sakai'
  1. Sakai
  2. SAK-43593

AntiSamy add iframe "allow" attribute

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: RESOLVED
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 12.8 [Tentative], 19.5, 20.0, 21.0 [Tentative]
    • Fix Version/s: 21.0 [Tentative]
    • Component/s: Kernel
    • Labels:
      None
    • 20 status:
      Please Merge
    • 19 status:
      Please Merge
    • Test Plan:
      Hide
      1. Go to Assignments and add a new assignment
      2. in RTE (CKEditor) click source and add the following content:
        <iframe allow="autoplay *; camera *; fullscreen *; encrypted-media *; microphone *"></iframe>
      3.  Click post and you should not receive a waning that your html has been stripped
      Show
      Go to Assignments and add a new assignment in RTE (CKEditor) click source and add the following content: <iframe allow="autoplay *; camera *; fullscreen *; encrypted-media *; microphone *"></iframe>  Click post and you should not receive a waning that your html has been stripped

      Description

      AntiSamy configuration should be updated to now allow the attribute "allow" in the iframe tag.

      This is consistent with SAK-39359 which allowed allowfullscreen and others for iframes.

      I choose the regxp anything since there is text and urls mixed and it became to complex.

        Gliffy Diagrams

          Zeplin

            Attachments

              Issue Links

              relates to

              Sub-task - The sub-task of the issue SAK-39359 AntiSamy should allow IFrames for popular sites

              • Major - Major loss of function or need for functionality in production in the near future.
              • CLOSED

              Bug - A problem which impairs or prevents functionality of the product. SAK-42226 LTI Content Item request expects to be placed in an iframe upon request

              • Major - Major loss of function or need for functionality in production in the near future.
              • RESOLVED

              Feature Request - Functionality that you would like to see in Sakai. SAK-40030 Allow Placement advice iframe in Content Item return for Rich Text Editor

              • Major - Major loss of function or need for functionality in production in the near future.
              • RESOLVED

                Activity

                  People

                  Assignee:
                  ern Earle R Nietzel
                  Reporter:
                  ern Earle R Nietzel
                  Votes:
                  0 Vote for this issue
                  Watchers:
                  3 Start watching this issue

                    Dates

                    Created:
                    Updated:
                    Resolved:

                      Git Integration