alps/plugins/viewhtml/viewer.go
Simon Ser b3f98de1da
plugins/viewhtml: add opt-in query param to load remote resources
Loading remote resources by default has privacy implications.
2020-02-25 16:13:10 +01:00

65 lines
1.6 KiB
Go

package koushinviewhtml
import (
"bytes"
"fmt"
"html/template"
"io/ioutil"
"strings"
"git.sr.ht/~emersion/koushin"
koushinbase "git.sr.ht/~emersion/koushin/plugins/base"
"github.com/emersion/go-message"
)
const tplSrc = `
<!-- allow-same-origin is required to resize the frame with its content -->
<!-- allow-popups is required for target="_blank" links -->
<iframe id="email-frame" srcdoc="{{.}}" sandbox="allow-same-origin allow-popups"></iframe>
<script src="/plugins/viewhtml/assets/script.js"></script>
<link rel="stylesheet" href="/plugins/viewhtml/assets/style.css">
`
var tpl = template.Must(template.New("view-html.html").Parse(tplSrc))
type viewer struct{}
func (viewer) ViewMessagePart(ctx *koushin.Context, msg *koushinbase.IMAPMessage, part *message.Entity) (interface{}, error) {
allowRemoteResources := ctx.QueryParam("allow-remote-resources") == "1"
mimeType, _, err := part.Header.ContentType()
if err != nil {
return nil, err
}
if !strings.EqualFold(mimeType, "text/html") {
return nil, koushinbase.ErrViewUnsupported
}
body, err := ioutil.ReadAll(part.Body)
if err != nil {
return nil, fmt.Errorf("failed to read part body: %v", err)
}
san := sanitizer{
msg: msg,
allowRemoteResources: allowRemoteResources,
}
body, err = san.sanitizeHTML(body)
if err != nil {
return nil, fmt.Errorf("failed to sanitize HTML part: %v", err)
}
ctx.Set("viewhtml.hasRemoteResources", san.hasRemoteResources)
var buf bytes.Buffer
err = tpl.Execute(&buf, string(body))
if err != nil {
return nil, err
}
return template.HTML(buf.String()), nil
}
func init() {
koushinbase.RegisterViewer(viewer{})
}