valvin
/
ttrss
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

if loaded over ssl and iframe is whitelisted, set its source to https

This commit is contained in:
Andrew Dolgov 2014-12-06 08:52:43 +03:00
parent bd07626826
commit c63850fad0
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
include/functions2.php
View File

@ -911,8 +911,13 @@
foreach ($entries as $entry) { foreach ($entries as $entry) {
if (!iframe_whitelisted($entry)) { if (!iframe_whitelisted($entry)) {
$entry->setAttribute('sandbox', 'allow-scripts'); $entry->setAttribute('sandbox', 'allow-scripts');
} else {
if ($_SERVER['HTTPS'] == "on") {
$entry->setAttribute("src",
str_replace("http://", "https://",
$entry->getAttribute("src")));
}
} }
} }
$allowed_elements = array('a', 'address', 'audio', 'article', 'aside', $allowed_elements = array('a', 'address', 'audio', 'article', 'aside',