jmb/48hr.email
1
0
Fork 0
mirror of https://github.com/Crazyco-xyz/48hr.email.git synced 2025-11-04 07:16:32 +01:00
Code Issues Projects Releases Packages Wiki Activity

Add TODO Comment to mail twig

Browse source
This commit is contained in:
ClaraCrazy 2023-11-02 08:15:11 +01:00
parent 01b56d97e9
commit f367b4caf6
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
infrastructure/web/views/mail.twig
View file

@ -18,6 +18,14 @@
</div> </div>
{% if mail.html %} {% if mail.html %}
<div> <div>
{# TODO:
Find a better solution for this monstrocity.
Replaces clean html tag with styled one for readabbility.
Realistically, the entire iFrame or even website itself might be vulnerable.
srcdoc='html' seems like a very, very unsafe method to me, unfortunately I havent found a better solution.
#}
<iframe srcdoc='{{ mail.html|replace({'<html>': '<html style="color: white"'}) }}'></iframe> <iframe srcdoc='{{ mail.html|replace({'<html>': '<html style="color: white"'}) }}'></iframe>
</div> </div>
{% elseif mail.textAsHtml %} {% elseif mail.textAsHtml %}