[wp-trac] [WordPress Trac] #58120: oEmbed Mastodon
WordPress Trac
noreply at wordpress.org
Sat Apr 22 23:53:09 UTC 2023
#58120: oEmbed Mastodon
-----------------------------+------------------------------
Reporter: mediaformat | Owner: (none)
Type: feature request | Status: new
Priority: normal | Milestone: Awaiting Review
Component: Embeds | Version:
Severity: normal | Resolution:
Keywords: | Focuses:
-----------------------------+------------------------------
Comment (by triumvirate):
Thanks for submitting this, @mediaformat ! Long live the Mastodon
federation.
Wow, this is ''something else''. I learned/ am learning quite a bit just
attempting to parse all of this.
> WordPress would need to review the embed JavaScript for each instance to
ensure that nasty-hackers dot social hasn't modified the code from the
default.
Thinking perhaps too outside the box here, could WordPress itself host
`embed.js`, and substitute its own version whenever it detects a Mastodon
one attempting to be used?
However, on second thought, as @johnbillion mentions
> The script tag isn't and therefore gets stripped but it doesn't appear
to matter because it's only there to adjust the height of the contents of
the iframe and doesn't affect the main styling.
It seems that would be insufficient as this script isn't actually
necessary, anyway?
But maybe the principle still applies? Self-host whatever js/ css Mastodon
sites are to inject?
--
Ticket URL: <https://core.trac.wordpress.org/ticket/58120#comment:9>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list