Found this content helpful? Log in or sign up to leave a like!

html files not working in Safari

Jump to solution
MattBunch
Community Member
‎02-24-2023 02:03 PM

Upload a blank html file, link to that file from a page. 
In safari try to click the link, it will give you a content blocked message.

I believe this is either a bug in canvas, or there is some plugin within our environment that is causing the issue. This issue is now degrading our user and overall platform experience.

The issue seems to be connected to some XSS issue with heapanalytics.js. 

How, who do I need to contact at Canvas to get this fixed? 

Labels (1)
Labels
0 Likes
1 Solution

Jump to solution
ProfessorBeyrer
Community Coach
Community Coach
‎02-26-2023 05:47 PM

I'm unable to replicate that problem, @MattBunch. Using Safari, I uploaded an html file to the /files area of my course and added a link to it within the Rich Content Editor using the Course Link option. Canvas treats it like a file and opens the file preview showing the content of the file. 

You mention a .js file. Canvas does not allow any <script> elements to be added to the HTML view of the Rich Content Editor, and it's possible that would present the error you describe. Another option is to use an <iframe> to make the page content appear within the Rich Content Editor. 

If you're not using <script>, check to confirm that the link begins with https:// instead of http://. Browsers do not like to display http:// webpages inside an https:// webpage because that's an easy way for security violations to spread.

View solution in original post