diff options
author | Rigel Kent <sendmemail@rigelk.eu> | 2018-06-10 18:20:19 +0200 |
---|---|---|
committer | Chocobozzz <me@florianbigard.com> | 2018-06-11 17:18:04 +0200 |
commit | 77540346413259e4ec62ee8302e503bcd2a01047 (patch) | |
tree | dbb52d62018527c1b338a2f04607f6b6326e1902 /client/src/assets/player | |
parent | 054a103b286277708a3a807a52da6cca12e1b0ce (diff) | |
download | PeerTube-77540346413259e4ec62ee8302e503bcd2a01047.tar.gz PeerTube-77540346413259e4ec62ee8302e503bcd2a01047.tar.zst PeerTube-77540346413259e4ec62ee8302e503bcd2a01047.zip |
(embed) sandbox the iframe
Diffstat (limited to 'client/src/assets/player')
-rw-r--r-- | client/src/assets/player/utils.ts | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/client/src/assets/player/utils.ts b/client/src/assets/player/utils.ts index b7cd40aa2..18a6b4dfa 100644 --- a/client/src/assets/player/utils.ts +++ b/client/src/assets/player/utils.ts | |||
@@ -92,6 +92,7 @@ function buildVideoLink (time?: number) { | |||
92 | 92 | ||
93 | function buildVideoEmbed (embedUrl: string) { | 93 | function buildVideoEmbed (embedUrl: string) { |
94 | return '<iframe width="560" height="315" ' + | 94 | return '<iframe width="560" height="315" ' + |
95 | 'sandbox="allow-same-origin allow-scripts" ' + | ||
95 | 'src="' + embedUrl + '" ' + | 96 | 'src="' + embedUrl + '" ' + |
96 | 'frameborder="0" allowfullscreen>' + | 97 | 'frameborder="0" allowfullscreen>' + |
97 | '</iframe>' | 98 | '</iframe>' |