[wp-trac] [WordPress Trac] #45033: Add TIDAL to oEmbed whitelist
WordPress Trac
noreply at wordpress.org
Fri Apr 12 09:49:39 UTC 2024
#45033: Add TIDAL to oEmbed whitelist
--------------------------+------------------------------
Reporter: tidal | Owner: (none)
Type: defect (bug) | Status: reopened
Priority: normal | Milestone: Awaiting Review
Component: Embeds | Version:
Severity: normal | Resolution:
Keywords: needs-patch | Focuses:
--------------------------+------------------------------
Changes (by swissspidy):
* severity: major => normal
* milestone: => Awaiting Review
Comment:
FWIW, WordPress has **always** added sandboxing (`sandbox="allow-scripts"
security="restricted"`), it's not something new.
With the `allow-scripts` sandbox I'm getting only CORS errors for the
embeds, so presumably if you add a `Access-Control-Allow-Origin` header to
resources such as `https://embed.tidal.com/embed-
resources/esbuild/js/app.ec5cacdceba9214958f7567feba427fe.js`, then the
embed should work again. Is this something you could try?
We can certainly re-evaluate adding Tidal to the allowlist, but if fixing
the CORS issues would solve the issue already than we'd prefer that.
--
Ticket URL: <https://core.trac.wordpress.org/ticket/45033#comment:9>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list