Forums | Mahara Community
Developers
/
Allow iframe
14 May 2014, 22:34
Hi,
When allowing iframe sources: bibbase.org/
and inserting this snippet
<iframe src="http://bibbase.org/show?bib=https%3A%2F%2Fapi.zotero.org%2Fgroups%2F150077%2Fitems%3Fkey%3DyqHi861yjEM6kWqD8yXy0hSD%26format%3Dbibtex%26limit%3D100"></iframe>
we still do not get it to work. Any ideas?
BR
Jonas
P.S. Also posted here: https://mahara.org/interaction/forum/topic.php?id=5921
15 May 2014, 1:29
Hello,
I had a try on my own server (Mahara 1.9). It works.
I have allowed : bibase.org (without the slash at the end)
And my iFrame is : <iframe src="http://bibbase.org/show?bib=https%3A%2F%2Fapi.zotero.org%2Fusers%2F23510%2Fcollections%2FD2XAEG4R%2Fitems%3Fkey%3DYk2kABeKdpCCcq9NJbPGEejt%26format%3Dbibtex%26limit%3D100"></iframe>
But I have disocvered two other issues :
1/ The size of box to enter the <iframe> is very small (2 lignes) and fixed. It should be either bigger or resizable
2/ The size of the embeded box is very very small. So you have to add the width and height parameters inside the <iframe> tag. Why the default behaviour wouldn't be to take all the available space to display and iFrame?
So I would add a bug report about these two later tonight.
But regarding the <iframe> it works
-dajan
15 May 2014, 1:47
Hi Dajan, and thanks a lot for your answer!
We have Mahara version: 1.7.2 We use https.
When creating the allowed iframe I skip the / but then it shows up with slash in the liste after its creation:
bibbase.org/
I insert the iframe in the External Media Block. And on an Institution page (will try on an ordinary page as well - I did try on other pages but stil it does not work)!
Still it does not work. Could it be the https? The Mahara version we have?
Best regards,
Jonas
15 May 2014, 1:59
Hi Jonas,
one thing I just thought of: could it be that your installation runs under https? (Most?) recent browsers block iframes with unsecure http-sources, if the main site is https-protected.
Best
Tobias
15 May 2014, 2:01
Hi Tobias,
yes it does run under https.
Are there ways around this then?
BR /Jonas
15 May 2014, 2:25
Hi Jonas,
none that I know of, sorry. I think you need to find a https-link to bibbase or else you would have to change the url of your site to run under http.
Best
Tobias
02 June 2014, 20:55
Hello Jonas,
I would not recommend switching from https to http for your site only because the iframe doesn't work. You are on the good way with using an SSL cert for your site. :-) It's Bibase that is the problem.
If you look into the address bar on a page where you embedded the iframe, you will see that there is a shield (at least in Firefox there should be) on which you can click and allow the insecure content through. Unfortunately, this is a setting on each user's computer. Mahara cannot make a sweeping change and unblock insecure third-party content.
For more info see https://blog.mozilla.org/tanvi/2013/04/10/mixed-content-blocking-enabled-in-firefox-23/
A number of sites such as YouTube have gone over to providing their content both under http and https. That is why the URLs look strange and don't start with http:// or https:// but just //. The correct protocol is chosen depending on the protocol that the site uses where the iframe code is embedded into.
Cheers
Kristina