oci/zeronet
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Remove wrapper object reference before loading iframe to enhance security

Browse source
This commit is contained in:
shortcutme 2018-02-21 03:03:01 +01:00
parent c438b9f8a5
commit fd56ddaa54
No known key found for this signature in database
GPG key ID: 5B63BAE6CB9613AE
2 changed files with 8 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

6
src/Ui/media/Wrapper.coffee
View file

@ -398,6 +398,12 @@ class Wrapper
@log "Setting title to", window.document.title
onWrapperLoad: =>
# Cleanup secret variables
delete window.wrapper
delete window.wrapper_key
$("#script_init").remove()
# Send message to innerframe
sendInner: (message) ->
@inner.postMessage(message, '*')