Bug 1905416: Fix sandboxed links in MarkdownView iframe

Add `allow-popups-to-escape-sandbox` to MarkdownView iframe `sandbox` attribute so that links with `target="_blank"` don't inherit the sandbox restrictions.
openshift · Jan 11, 2021 · df568bf · df568bf
1 parent b7782d5
commit df568bf
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/frontend/public/components/markdown-view.tsx b/frontend/public/components/markdown-view.tsx
@@ -156,7 +156,7 @@ export class SyncMarkdownView extends React.Component<SyncMarkdownProps, State>
     return (
       <>
         <iframe
-          sandbox="allow-popups allow-same-origin"
+          sandbox="allow-popups allow-popups-to-escape-sandbox allow-same-origin"
           srcDoc={contents}
           style={{ border: '0px', display: 'block', width: '100%', height: '0' }}
           ref={(r) => (this.frame = r)}