diff --git a/src/common/detect-omid.js b/src/common/detect-omid.js index 50de575..68a1476 100644 --- a/src/common/detect-omid.js +++ b/src/common/detect-omid.js @@ -50,7 +50,8 @@ exports.declareOmidPresence = function(globalObject) { } else { const frameTag = ''; + ` name="${exports.OMID_PRESENT_FRAME_NAME}"` + + ` sandbox>`+ ''; globalObject.document.write(frameTag); } }; @@ -66,6 +67,7 @@ exports.appendPresenceIframe_ = function(globalObject) { iframe.id = exports.OMID_PRESENT_FRAME_NAME; iframe.name = exports.OMID_PRESENT_FRAME_NAME; iframe.style.display = 'none'; + iframe.sandbox = undefined; globalObject.document.body.appendChild(iframe); }; diff --git a/test/unit/common/detect-omid-test.js b/test/unit/common/detect-omid-test.js index 7f12a2b..5bb5ea9 100644 --- a/test/unit/common/detect-omid-test.js +++ b/test/unit/common/detect-omid-test.js @@ -99,6 +99,7 @@ describe('DetectOmidTest', () => { `id="${DetectOmid.OMID_PRESENT_FRAME_NAME}"`); expect(frameTagUsed).toMatch( `name="${DetectOmid.OMID_PRESENT_FRAME_NAME}"`); + expect(frameTagUsed).toMatch(`sandbox`); }); it('should add special frame without mutation observer if body exists', @@ -121,6 +122,7 @@ describe('DetectOmidTest', () => { tag: tagName, id: '', name: '', + sandbox: '', style: { display: '', }, @@ -137,6 +139,7 @@ describe('DetectOmidTest', () => { expect(frameTagUsed.tag).toEqual('iframe'); expect(frameTagUsed.id).toEqual(DetectOmid.OMID_PRESENT_FRAME_NAME); expect(frameTagUsed.name).toEqual(DetectOmid.OMID_PRESENT_FRAME_NAME); + expect(frameTagUsed.sandbox).toBeUndefined(); expect(frameTagUsed.style.display).toEqual('none'); }); });