Home Explore Help
Register Sign In
ylproj
/
jupyterlab
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 0458cbb88a
Branches Tags
jupyterlab
/
packages
/
apputils
/
src
/
iframe.ts

iframe.ts 4.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152 
  1. // Copyright (c) Jupyter Development Team.
    2. 

  2. // Distributed under the terms of the Modified BSD License.
    3. 

  3. 

  4. import { Widget } from '@lumino/widgets';
    5. 

  5. 

  6. /**
    7. 

  7.  * A phosphor widget which wraps an IFrame.
    8. 

  8.  */
    9. 

  9. export class IFrame extends Widget {
    10. 

  10.   /**
    11. 

  11.    * Create a new IFrame widget.
    12. 

  12.    */
    13. 

  13.   constructor(options: IFrame.IOptions = {}) {
    14. 

  14.     super({ node: Private.createNode() });
    15. 

  15.     this.addClass('jp-IFrame');
    16. 

  16.     this.sandbox = options.sandbox || [];
    17. 

  17.     this.referrerPolicy = options.referrerPolicy || 'no-referrer';
    18. 

  18.   }
    19. 

  19. 

  20.   /**
    21. 

  21.    * Referrer policy for the iframe.
    22. 

  22.    *
    23. 

  23.    * #### Notes
    24. 

  24.    * By default, `no-referrer` is chosen.
    25. 

  25.    *
    26. 

  26.    * For more information, see
    27. 

  27.    * https://developer.mozilla.org/en-US/docs/Web/API/HTMLIFrameElement/referrerPolicy
    28. 

  28.    */
    29. 

  29.   get referrerPolicy(): IFrame.ReferrerPolicy {
    30. 

  30.     return this._referrerPolicy;
    31. 

  31.   }
    32. 

  32.   set referrerPolicy(value: IFrame.ReferrerPolicy) {
    33. 

  33.     if (this._referrerPolicy === value) {
    34. 

  34.       return;
    35. 

  35.     }
    36. 

  36.     this._referrerPolicy = value;
    37. 

  37.     const iframe = this.node.querySelector('iframe')!;
    38. 

  38.     iframe.setAttribute('referrerpolicy', value);
    39. 

  39.   }
    40. 

  40. 

  41.   /**
    42. 

  42.    * Exceptions to the sandboxing.
    43. 

  43.    *
    44. 

  44.    * #### Notes
    45. 

  45.    * By default, all sandboxing security policies are enabled.
    46. 

  46.    * This setting allows the user to selectively disable these
    47. 

  47.    * policies. This should be done with care, as it can
    48. 

  48.    * introduce security risks, and possibly allow malicious
    49. 

  49.    * sites to execute code in a JupyterLab session.
    50. 

  50.    *
    51. 

  51.    * For more information, see
    52. 

  52.    * https://developer.mozilla.org/en-US/docs/Web/HTML/Element/iframe
    53. 

  53.    */
    54. 

  54.   get sandbox(): IFrame.SandboxExceptions[] {
    55. 

  55.     return this._sandbox.slice();
    56. 

  56.   }
    57. 

  57.   set sandbox(values: IFrame.SandboxExceptions[]) {
    58. 

  58.     this._sandbox = values.slice();
    59. 

  59.     const iframe = this.node.querySelector('iframe')!;
    60. 

  60.     const exceptions = values.length ? values.join(' ') : '';
    61. 

  61.     iframe.setAttribute('sandbox', exceptions);
    62. 

  62.   }
    63. 

  63. 

  64.   /**
    65. 

  65.    * The url of the IFrame.
    66. 

  66.    */
    67. 

  67.   get url(): string {
    68. 

  68.     return this.node.querySelector('iframe')!.getAttribute('src') || '';
    69. 

  69.   }
    70. 

  70.   set url(url: string) {
    71. 

  71.     this.node.querySelector('iframe')!.setAttribute('src', url);
    72. 

  72.   }
    73. 

  73. 

  74.   private _sandbox: IFrame.SandboxExceptions[] = [];
    75. 

  75.   private _referrerPolicy: IFrame.ReferrerPolicy;
    76. 

  76. }
    77. 

  77. 

  78. /**
    79. 

  79.  * A namespace for IFrame widget statics.
    80. 

  80.  */
    81. 

  81. export namespace IFrame {
    82. 

  82.   /**
    83. 

  83.    * Referrer policy for the iframe.
    84. 

  84.    *
    85. 

  85.    * User documentation for the policies can be found here:
    86. 

  86.    * https://developer.mozilla.org/en-US/docs/Web/API/HTMLIFrameElement/referrerPolicy
    87. 

  87.    */
    88. 

  88.   export type ReferrerPolicy =
    89. 

  89.     | 'no-referrer'
    90. 

  90.     | 'no-referrer-when-downgrade'
    91. 

  91.     | 'origin'
    92. 

  92.     | 'origin-when-cross-origin'
    93. 

  93.     | 'same-origin'
    94. 

  94.     | 'strict-origin'
    95. 

  95.     | 'strict-origin-when-cross-origin'
    96. 

  96.     | 'unsafe-url';
    97. 

  97. 

  98.   /**
    99. 

  99.    * Exceptions to the iframe sandboxing policies.
    100. 

  100.    * These are specified here:
    101. 

  101.    * https://www.w3.org/TR/2011/WD-html5-20110525/the-iframe-element.html#attr-iframe-sandbox
    102. 

  102.    *
    103. 

  103.    * More user-friendly documentation can be found here:
    104. 

  104.    * https://developer.mozilla.org/en-US/docs/Web/HTML/Element/iframe#sandbox
    105. 

  105.    */
    106. 

  106.   export type SandboxExceptions =
    107. 

  107.     | 'allow-forms'
    108. 

  108.     | 'allow-modals'
    109. 

  109.     | 'allow-orientation-lock'
    110. 

  110.     | 'allow-pointer-lock'
    111. 

  111.     | 'allow-popups'
    112. 

  112.     | 'popups-to-escape-sandbox'
    113. 

  113.     | 'allow-presentation'
    114. 

  114.     | 'allow-same-origin'
    115. 

  115.     | 'allow-scripts'
    116. 

  116.     | 'allow-storage-access-by-user-activation'
    117. 

  117.     | 'allow-top-navigation'
    118. 

  118.     | 'allow-top-navigation-by-user-activation';
    119. 

  119. 

  120.   /**
    121. 

  121.    * Options for creating a new IFrame widget.
    122. 

  122.    */
    123. 

  123.   export interface IOptions {
    124. 

  124.     /**
    125. 

  125.      * Exceptions for the iframe sandbox.
    126. 

  126.      */
    127. 

  127.     sandbox?: SandboxExceptions[];
    128. 

  128. 

  129.     /**
    130. 

  130.      * Referrer policy for the iframe.
    131. 

  131.      */
    132. 

  132.     referrerPolicy?: ReferrerPolicy;
    133. 

  133.   }
    134. 

  134. }
    135. 

  135. 

  136. /**
    137. 

  137.  * A namespace for private data.
    138. 

  138.  */
    139. 

  139. namespace Private {
    140. 

  140.   /**
    141. 

  141.    * Create the main content node of an iframe widget.
    142. 

  142.    */
    143. 

  143.   export function createNode(): HTMLElement {
    144. 

  144.     const node = document.createElement('div');
    145. 

  145.     const iframe = document.createElement('iframe');
    146. 

  146.     iframe.setAttribute('sandbox', '');
    147. 

  147.     iframe.style.height = '100%';
    148. 

  148.     iframe.style.width = '100%';
    149. 

  149.     node.appendChild(iframe);
    150. 

  150.     return node;
    151. 

  151.   }
    152. 

  152. }
    153.