Pass a CSS selector as value to heightCalculationMethod

Question

Pass a CSS selector as value to heightCalculationMethod

robsonsobral opened this issue 3 years ago · 10 comments

Hey!

May I suggest a feature?

To allow a CSS selector to be used as value to heightCalculationMethod. The target element would then be used as reference to the height of the iframe.

The validity of the selector can be checked this way:

const queryCheck = (s) => document.createDocumentFragment().querySelector(s);

function isSelectorValid(selector) {
  if (typeof selector !== 'string') return false;
  try { queryCheck(selector); } catch { return false; }
  return true;
}

Thank you for your attention, @davidjbradshaw !

Answer 1 · 2022-05-19T05:45:59.000Z

Interesting idea

Answer 2 · 2022-05-19T13:50:54.000Z

Like me, there's a lot of devs having issues with Metabase. This could be fixed like this, then:

iFrameResize({ heightCalculationMethod: '#root' }, '#metabase');

It would be much more performant than taggedElement.

Answer 3 · 2022-05-21T18:44:10.000Z

I would welcome a PR.

One issue is currently the message between frames uses : as a field deliminator

Answer 4 · 2022-05-22T01:45:10.000Z

Oh, I see!

 var data = initMsg.slice(msgIdLen).split(':')

And:

var data = msg.slice(msgIdLen).split(':')

(Why not to encode as JSON, @davidjbradshaw ? To save some bytes?)

~~However, as : in QuerySelectors needs to be double scaped, we can use a RegEx to split the parts of the message. Right?~~

We could simply URL encode them. What do you think?

Answer 5 · 2022-05-22T07:33:26.000Z

It was originally written a decade ago to work in IE8 without libraries.

The message format is compatible back to version one, so that the two JS files don’t need to be matching versions.

It would be a little ugly, but it would be better to encode the selectors to not have colons in them in the message and then convert it back in the iframe. URLencode would work,

Answer 6 · 2022-05-22T07:38:51.000Z

Thinking a bit more there is also a security aspect to think about. This would also need a flag to enable in the iframe. Some applications consider the parent page being able to hide part of the iframe a security issue.

Answer 7 · 2022-05-22T16:12:04.000Z

The message format is compatible back to version one, so that the two JS files don’t need to be matching versions.

This is great! I respect that!

Some applications consider the parent page being able to hide part of the iframe a security issue.

I didn't get this. What do you mean? From the iframe perspective, we would be just following the same path as the taggedElement setting.

Answer 8 · 2022-05-22T19:13:51.000Z

With taggedElement the selected element is controlled by the iFrame. If you pass a selector from the parent page, then this is no longer in the direct control of the iframe and could possibly be miss-used.

One way around this would be to just set heightCalculationMethod: ‘selector’ and then have an option in the iframe for the selector.

Answer 9 · 2022-05-22T23:43:53.000Z

If you pass a selector from the parent page, then this is no longer in the direct control of the iframe and could possibly be miss-used.

Even if we check it to make sure it's really a selector?

One way around this would be to just set heightCalculationMethod: ‘selector’ and then have an option in the iframe for the selector.

This is exactly the same as the taggedElement.

Answer 10 · 2023-04-26T12:35:09.000Z

New project and I'm back to this.

Now, I get the point of misuse the selector! It would open a door to bad use, which would put more responsibility over the iframe content.