Iframe

To add an inline frame to a task, use the {{iframe src=<object URL>}} component. For example:

{{iframe src=url width="100px" height="100px"}}
Full list of parameters

Parameter

Description

Required

Default value

src

Page URL.

yes

no

width

Width of the frame. Set in the following units:

  • Pixels. For example, width="100px".

  • Percentage of the size of the parent element. For example, width="100%".

You can also use a formula for setting the width. For example, width="calc(100%-30px)".

no

"300px"
height

Height of the frame in pixels. Set in the following units:

  • Pixels. For example, height="100px";

  • Percentage of the size of the parent element. For example, height="100%".

You can also use a formula for setting the width. For example, height="calc(100%-30px)".

no

"500px"
content-width

The width of the content in the frame, in pixels. For example, content-width="700".

To make the frame the width of the screen, set content-width="false".

no

"1280"
zoom

Button for increasing the frame to the size of the browser window.

  • zoom=true — Increase frame to the browser window.
  • zoom=false — Keep the set size of frame.

no

false
class

CSS class for the frame.

no

".iframe"
sandbox

Enables sandbox mode, which restricts working in the frame.

To disable certain restrictions, you can use the following values (separate with spaces if combining them):

  • "allow-forms" allows frame content to submit forms.

  • "allow-modules" allows opening modal windows (for example, using an alert).

  • "allow-orientation-lock" allows lock and unlock methods from the Screen Orientation API.
  • "allow-pointer-lock" allows the Pointer lock API.
  • "allow-popups" allows popup windows (for example, using window.open or target="_blank").
  • "allow-popups-to-escape-sandbox" allows pop-ups not to inherit sandbox mode (for example, so that in a popup window with JavaScript it is allowed without "allow-scripts" for a frame).
  • "allow-presentation" allows using the Presentation API.
  • "allow-same-origin"allows loading frame content (interprets this as content from the same source as the parent document). Blocks popup windows, so it can be used to open content safely.

  • "allow-scripts" allows running and executing scripts. However, creating popup windows is prohibited.
  • "allow-top-navigation" allows opening frame links in the parent document.

  • "allow-top-navigation-by-user-activation" allows opening a frame link clicked by the user in the parent document.
  • "false" disables the restrictions listed.

no

"allow-scripts allow-same-origin"