What is the problem or goal the end user is trying to solve or accomplish?
Users would like to be able to securely use iframe
and other HTML tags on Text boxes.
How are they solving it currently?
This is currently not possible. iframe
and other HTML tags are blocked on Preset due to HTML_SANITIZATION
rules.
What is the recommended solution by the Customer?
Provide the ability for customers to configure HTML_SANITIZATION_SCHEMA_EXTENSIONS
(so that additional HTML tags are allowed) and Content Security Policies (CSP) to limit the possible sources (for example, allowing only links from the company domain to be used in iframe
tags) on a team level.