-
Notifications
You must be signed in to change notification settings - Fork 248
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add domain check before sending init message to parent #52
Comments
@bluepnume Can you add more info to that item please? What kind of domain check still missing? |
Hey, the intent of this was to allow components to define which domains they can be rendered by. For example, if a component specified:
but the component was rendered by |
Cool. Thanks for the info. On that just to confirm, if a component didn't specify parentDomains, it means that it can send messages to any domain. |
Yeah, the way it stands right now is that components can be rendered by any domain. If you need to restrict this the best way right now is to rely on an |
* controlling log level * add logLevel to probs * remove defualtEnv prop that was deleted by mistake * configure logLevel when creating component * add logging unit tests * update dist * update API docs with defaultLogLevel and logLevel * remove whitespace and one line that was not required for logLevel * update dist * Revert "update dist" This reverts commit 1cf0263. * Revert "update dist" This reverts commit 7734741. * override dist with dist from v 2.0.22 * validate parent domain * fix validation logic * remove whitespace * update readme * allow string match in parentDomain check * add tests and use cross-domain-utils * remove file added by mistake * happy path tests * remove whitespace * upgrade cross-domain-utils and pass array to matchDomain * do parentDomainValidation before render * remove code added by mistake * fix whitespace * remove non required call to validateRenderAllowed
No description provided.
The text was updated successfully, but these errors were encountered: