Project

General

Profile

Actions
Copy link

Task #94084

closed

Make module requests Sec-Fetch-Dest aware

Added by Benjamin Franzke over 3 years ago. Updated about 3 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Benjamin Franzke
Category:
Backend User Interface
Target version:
-
Start date:
2021-05-06
Due date:
% Done:

100%

Estimated time:
TYPO3 Version:
11
PHP Version:
Tags:
Complexity:
Sprint Focus:

Description

This allows module URLs to automatically framed by the TYPO3
main controller whenever they are directly requested via the
browser address bar (Header: Sec-Fetch-Mode=document). See:
https://w3c.github.io/webappsec-fetch-metadata/#sec-fetch-mode-header

Note: This header already supported by Chrome and Firefox nightly,
Safari does not deliver this header yet.
Non supporting browsers can gracefully fallback to showing
the module contents without the TYPO3 main frame being added.
This fallback behaviour would only be triggered when a link is
opened in a new tab. Regular clicks can be intercepted and
directly dispatched via module-router/iframe, as before.

This allows to render the module menu with anchor tags
instead of buttons which lets users decide how and
where a module should be opened.

Related issues 1 (0 open1 closed)

Related to TYPO3 Core - Bug #95656: Backend: scrollbar in .scaffold-modulemenu on Firefox cuts into iconsClosed2021-10-14

Actions
Actions
Copy link

Also available in: Atom PDF