...
The inclusion of content from other websites on Confluence pages is a security risk. Use if you trust all your users.
Configuration page
From version 1.4.2, we've addressed additional functionality to aid the security for this Macro. This provides the Administrator with control over the URLs which are accessible via White-listing and excluding scripts from the source code. For more information on this, please refer to Configuration page - Security Enhancement.
Drivers for development
The Confluence HTML Macros include {html-include} which is neat way of pulling arbitrary content into Confluence. For me I have a sister Twiki that cant be imported into Confluence due to its dynamic data. The Atlassian plugin doesn't take account of relative URL's,
Example | Renders in Confluence as | Result |
---|---|---|
href="someplace/somefile.gif | href="http://confluencePAGE_URL/someplace/somefile.gif" | |
location="../../someplace/somefile.gif | href="http://confluencePAGE_URL/../../someplace/somefile.gif | |
href="/someplace/somefile.gif | href="http://confluenceSERVER_URL/someplace/somefile.gif" | |
An ajaxy/GWT application |
Info | ||
---|---|---|
| ||
This plugin was a response to CONF-6567 and the low vote count it had, I;m currently attempting to get it adopted by Atlassian as it would be even better if this could take advantage of the 2.9.2+ site White-listing features in the Atlassian macro, which is currently not possible probably. |
...
No Format |
---|
{html-include-replace:url=http://someplace/possiblysomedir/somefile.html|container=iframe|width=400|height=400} |
Options | Example Value | Description | |
---|---|---|---|
replace1 | replace1=badtag | eg'replace' with unique (replacement) number suffixes, (subject of future refactor I'm sure) causes the whole of the 'badtag' to be removed, including its closing badtag, necessary if a given tag causes jtidy parse problems | |
engine | jtidy | optional parameter, enables different cleanup engines to be selected, default is Atlassian Fast Page Parser, other options include: 'jtidy' and 'neko' | |
includeStyles | true | Styles (.css) referenced via href= attributes are dynamically loaded into page from the source server IS a very real risk of collisions with Confluence CSS names, styling of Confluence may be adversely affectged. | |
includeScripts | true | Scripts (.js) referenced via href= attributes are dynamically loaded into page from the source server | |
container | none|div|iframe | defines whether a container element should wrap included elements. In the case of IFrame, this totally separates content | |
width | 400 | 50% | sets the width of the IFrame if used |
height | 500 | 50% | sets the height of the IFrame if used |
style | 'scrolling: auto; align: right' | any CSS styles to be applied |
Example
CNN in a box:
No Format |
---|
{html-include-replace:url=http://www.cnn.com|includeStyles=true} |
...
Gallery | ||||
---|---|---|---|---|
|
Version History
? |
|
---|---|
0.5 |
|
0.4 |
|
0.3 |
|
Known Issues
Legacy Issues
...