I was posting a link to a video on funnyordie.com, and put it on a new line to try to embed the video.
Instead, it caused the browser to redirect to the link as soon as the post loaded. As the redirect happened immediately, it was very difficult to select the post to edit/delete in order to remove the link.
I’m not sure what can be done about this, except disabling embeds from the site.
Here’s the link I was using: http://www.funnyordie.com/videos/f4cacc863f/daddy-s-boy
I’ve replicated this on try. Since try is running HTTPS, and FunnyOrDie is pulling the troublesome Javascript over HTTP, you need to enable “unsafe script loading”, the redirect happens. Extremely uncool.
I’ll leave it up to someone else on the @team to provide potential solutions, because I can barely spell iframe, let alone know how to defang them.
Looks like some error on our side, because the onebox should use the www.funnyordie.com/embed/f4cacc863f url to embed, that would work fine, but it’s using the original one.
Shouldn’t the onebox iframe use the sandbox attribute to disallow redirects? I think omitting allow-top-navigation from the value of sandbox should work…
Is the onebox using the feature the site provides?
<iframe src="//www.funnyordie.com/embed/bceeb70de9"
width="640" height="400" frameborder="0"
allowfullscreen webkitallowfullscreen mozallowfullscreen></iframe>
<div style="text-align:left;font-size:x-small;margin-top:0;width:640px;">
<a href="http://www.funnyordie.com/videos/bceeb70de9/get-out-of-the-white-house-mashup-trailer"
title="from booyapictures, Charles Muzard">Get Out (Of The White House)</a>
from <a href="http://www.funnyordie.com/funnyordie">Funny Or Die</a>
</div>
Looks like another onebox issue which has been fixed. I could not reproduce this on try.