haskal
/
jiti-meet
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat(external-api) sandbox the iframe 

Give it the minimum amount of permissions necessary to run.
This commit is contained in:
Saúl Ibarra Corretgé 2023-01-16 11:57:25 +01:00 committed by Saúl Ibarra Corretgé
parent 726fd3f8a1
commit 43b91b16da
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
modules/API/external/external_api.js vendored
View File

@ -392,6 +392,7 @@ export default class JitsiMeetExternalAPI extends EventEmitter {
this._frame.name = frameName;
this._frame.id = frameName;
this._setSize(height, width);
this._frame.sandbox = 'allow-scripts allow-same-origin';
this._frame.setAttribute('allowFullScreen', 'true');
this._frame.style.border = 0;