FIX: Don't put iframes in emails where they are sanitized out. Replace

them with links.
2025-02-25 18:55:32 -06:00 · 2014-07-14 16:41:05 -04:00
parent 766196af87
commit dd6fd7fa39
2 changed files with 29 additions and 0 deletions
--- a/lib/email/styles.rb
+++ b/lib/email/styles.rb
@@ -81,6 +81,20 @@ module Email
      @fragment.css('aside, article, header').each do |n|
        n.name = "div"
      end
+
+      # iframes can't go in emails, so replace them with clickable links
+      @fragment.css('iframe').each do |i|
+        begin
+          src_uri = URI(i['src'])
+
+          # If an iframe is protocol relative, use SSL when displaying it
+          display_src = "#{src_uri.scheme || 'https://'}#{src_uri.host}#{src_uri.path}"
+          i.replace "<p><a href='#{src_uri.to_s}'>#{display_src}</a><p>"
+        rescue URI::InvalidURIError
+          # If the URL is weird, remove it
+          i.remove
+        end
+      end
    end

    def format_html