search

dotCMS / core

Headless/Hybrid Content Management System for Enterprises
http://dotcms.com
Other
862 stars 468 forks source link

UVE: Enhance `isInsideEditor` Function in the SDK #28821

Open fmontes opened 4 months ago

fmontes commented 4 months ago

Parent

28404

Task description

As a developer working on the dotCMS SDK, I need to improve the isInsideEditor function to make it more robust and secure. This function is crucial for determining whether a user is currently inside the dotCMS editor environment.

Acceptance Criteria

TBD

External Links

TBD

Assumptions & Initiation Needs

Currently, we're only checking if the client web app is inside an iframe, also the postMessage are not using specific origin (*).

Quality Assurance Notes & Workarounds

TBD

fmontes commented 2 days ago

This issue needs a clear path, we have no idea how to do this.