You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cordova.apache.org by "jcesarmobile (JIRA)" <ji...@apache.org> on 2016/03/10 12:55:40 UTC

[jira] [Commented] (CB-10778) Documentation inaccurate

    [ https://issues.apache.org/jira/browse/CB-10778?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15189191#comment-15189191 ] 

jcesarmobile commented on CB-10778:
-----------------------------------

On the first issue, I think it refers to the regular window.open, not the inAppBrowser one. In fact, according to the currect docs, you should use cordova.InAppBrowser.open instead of window.open.

On the issue 2, I agree, in fact, in my tests, it doesn't apply to iframes on android, just the opposite of what the docs say. I don't have an allow-navigation tag and I can see the iframe content.
On iOS I can't see without the allow-navigation tag

> Documentation inaccurate
> ------------------------
>
>                 Key: CB-10778
>                 URL: https://issues.apache.org/jira/browse/CB-10778
>             Project: Apache Cordova
>          Issue Type: Improvement
>          Components: Docs, Plugin Whitelist
>         Environment: Cordova for Android 5.1.1
>            Reporter: Jacob Weber
>            Priority: Minor
>
> h3. Issue 1:
> https://github.com/apache/cordova-plugin-whitelist states:
> "Intent Whitelist ... does not apply to plugins, only hyperlinks and calls to window.open()."
> At least on Android, <allow-intent> doesn't seem to affect window.open calls when InAppBrowser is installed. For example, this doesn't use the whitelist:
> {code}
> window.open('market://details?id=com.example.android', '_system');
> {code}
> but this does:
> {code}
> window.location = 'market://details?id=com.example.android';
> {code}
> h3. Issue 2:
> https://github.com/apache/cordova-plugin-whitelist states:
> "Navigation Whitelist...controls which URLs the WebView itself can be navigated to. Applies to top-level navigations only. Quirks: on Android it also applies to iframes for non-http(s) schemes."
> On iOS, this seems to apply to iframes as well. If I insert an iframe into the top-level page, it won't be loaded without an <allow-navigation> entry for the iframe's src.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: issues-unsubscribe@cordova.apache.org
For additional commands, e-mail: issues-help@cordova.apache.org