fix: Prevent 3rd party script to load ssr #19443

FollowTheFlo · 2024-10-24T17:03:41Z

prevent 3rd party JS to load in ssr
SSR only load 3rd party html as sanitized html thus cleaning any script and non-standard html tags. it also keeps the inline css.

FollowTheFlo · 2024-10-24T17:07:50Z

integration-libs/opf/cta/components/opf-cta-element/opf-cta-element.component.ts

@@ -23,14 +24,26 @@ import { OpfCtaScriptsService } from '../opf-cta-scripts/opf-cta-scripts.service
 export class OpfCtaElementComponent implements AfterViewInit {
  protected sanitizer = inject(DomSanitizer);
  protected opfCtaScriptsService = inject(OpfCtaScriptsService);
-  loader = true;


FollowTheFlo · 2024-10-24T17:08:38Z

integration-libs/opf/cta/components/opf-cta-element/opf-cta-element.component.ts

+  }
+
+  // Removing script tags on FE until BE fix: CXSPA-8572
+  protected removeScriptTags(html: string) {


This function can only be used in CSR as using DOMParser.

prevent script in ssr

5801ba5

FollowTheFlo requested a review from a team as a code owner October 24, 2024 17:03

remove unused code

b215f00

FollowTheFlo commented Oct 24, 2024

View reviewed changes

FollowTheFlo added 2 commits October 24, 2024 13:16

update unit test

745e249

fix unit tests

6b44248

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix: Prevent 3rd party script to load ssr #19443

fix: Prevent 3rd party script to load ssr #19443

FollowTheFlo commented Oct 24, 2024

FollowTheFlo Oct 24, 2024

FollowTheFlo Oct 24, 2024

fix: Prevent 3rd party script to load ssr #19443

Are you sure you want to change the base?

fix: Prevent 3rd party script to load ssr #19443

Conversation

FollowTheFlo commented Oct 24, 2024

FollowTheFlo Oct 24, 2024

Choose a reason for hiding this comment

FollowTheFlo Oct 24, 2024

Choose a reason for hiding this comment