frail-apricot•2y ago

Questions

@everyone quick update - were fixing a vulnerability with Markdown (ie. rendering headers, bold, links, iframes etc) on Voiceflow. The main change here is that some HTML tags (such as Iframes) have been disabled on the canvas. Standard tags (bold, headers, underline, bullet, video, audio, etc.) are not affected. There is a way to enable all tags on the production webchat widget - more details in the comments.

19 Replies

modern-teal•2y ago

Opening us a thread here for questions and updates as we have them

conscious-sapphire•2y ago

Quick question. Am I doing the links wrong here?

modern-teal•2y ago

Update: We're going to enable the following tags by default Other more dangerous elements (like Iframe's) will be disabled in the creator tool. You can enable them in the production webchat widget by following the instructions here: https://developer.voiceflow.com/docs/chat-widget#supported-html-elements-in-the-text-step

['a','audio','b','blockquote','br','code','dd','del','details','div','dl','dt','em','h1','h2','h3','h4','h5','h6','hr','i','img','input','ins','kbd','li','ol','p','picture','pre','q','rp','rt','ruby','s','samp','section','source','span','strike','strong','sub','summary','sup','table','tbody','td','tfoot','th','thead','tr','tt','ul','var','video']

['a','audio','b','blockquote','br','code','dd','del','details','div','dl','dt','em','h1','h2','h3','h4','h5','h6','hr','i','img','input','ins','kbd','li','ol','p','picture','pre','q','rp','rt','ruby','s','samp','section','source','span','strike','strong','sub','summary','sup','table','tbody','td','tfoot','th','thead','tr','tt','ul','var','video']

Voiceflow

Web Chat

Implement your Voiceflow Web Chat agent using our install code and JavaScript API.

modern-teal•2y ago

If there are other tags you want supported, please let us know and provide an example of how you're using it 🙂

vicious-gold•2y ago

Still cant see the iframe -

vicious-gold•2y ago

Added the tag -

NiKo | Voiceflow•2y ago

Use a variable for the src URL in your iFrame code to make it works.

vicious-gold•2y ago

Ah okay, it's now loading but the variable is doing something to the mapsrc for google not to like it, any ideas?

NiKo | Voiceflow•2y ago

Maybe some encoding issue with URL params. Are you able to share the link with us? Removing the post as your API key was there.

vicious-gold•2y ago

Would I be able to only set a portion of the SRC as a variable, maybe that could avoid the entire SRC being encoded

NiKo | Voiceflow•2y ago

Use a JS Step to populate your {variable}, this will avoid any encoding issue.

NiKo | Voiceflow•2y ago

vicious-gold•2y ago

Somehow still getting this 😭 -

vicious-gold•2y ago

And now it has randomly loaded after a few minutes 🤣 -

vicious-gold•2y ago

Okay seems to be working now 🙏 , thanks @NiKo | Voiceflow!

vicious-gold•2y ago

If I set the iFrame to 150% height it moves outside the bubble, any fix for that? Sorry for all the questions -

modern-teal•2y ago

No fix for that - you can adjust the size of the webchat using CSS. You should choose a size for the iframe that is supported by the size of your webchat @Brendan were you using a set step before to fill the variable? I'm pretty sure we fixed this encoding issue this morning but I can verify tomorrow

vicious-gold•2y ago

Yeah I was using a set step

inland-turquoise•2y ago

Hello, While testing our chatbot we are facing the following issue: The chatbot is opening once and disappearing instantly on some devices. After extensive debugging at our end we could see that this may be caused due to an unsupported method in the bundle.mjs library at your end. We have found this issue for the following device specifications: Android- Microsoft Surface Duo - Microsoft Surface Duo 2 - Xiaomi MI 11 Pro IOS - macOS Big Sur Please refer to the attached screenshot - https://prnt.sc/7HNBpDWI556Q. It will be great if you can look into this and get back with your feedback. Thank You! Please help

Questions

Did you find this page helpful?