Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add the iframe provider to support parent window based wallets #388

Closed
wants to merge 20 commits into from
Closed

Add the iframe provider to support parent window based wallets #388

wants to merge 20 commits into from

Conversation

moodysalem
Copy link

Adds the iframe provider polyfill to index.html so that wallets like Ethvault.xyz can be used to interact with ENS

moodysalem and others added 13 commits July 14, 2019 23:57
@moodysalem
Add the iframe provider to support parent window based wallets
11b1edd 
Adds the iframe provider polyfill to index.html so that wallets like Ethvault.xyz can be used to interact with ENS
@jefflau
Fix test registrar (#387)
6c206da 
* Upgrade ensdomains/ui to fix provider/signer

* upgrade npm package
@dependabot
Bump handlebars from 4.0.11 to 4.1.2
b482d7a 
Bumps [handlebars](https://github.com/wycats/handlebars.js) from 4.0.11 to 4.1.2.
- [Release notes](https://github.com/wycats/handlebars.js/releases)
- [Changelog](https://github.com/wycats/handlebars.js/blob/master/release-notes.md)
- [Commits](handlebars-lang/handlebars.js@v4.0.11...v4.1.2)

Signed-off-by: dependabot[bot] <[email protected]>
@jefflau
Upgrade subpackages
c2e4ec8
@jefflau
Merge pull request #395 from ensdomains/dependabot/npm_and_yarn/handl…
049cb51 
…ebars-4.1.2

Bump handlebars from 4.0.11 to 4.1.2
@moodysalem
Bump version to 0.1.5
53ae0c6
@jefflau
Fix labelhash
a2c9fc3
@jefflau
Merge branch 'dev' of github.com:ensdomains/ens-app into dev
27fc9d6
@jefflau
Add short name link to short names
88210be
@jefflau
Add banner for short name reservations
a9dd375
@jefflau
Add favourites button and remove short name limiter for search
c50639f
@jefflau
Remove comment
6658542
@jefflau
Merge pull request #399 from ensdomains/reserve-link
4f0ac35 
Reserve link
@makoto
Copy link
Member

makoto commented Jul 22, 2019

Do you have anyone audited your package? I have a bit of hesitance including a package I don't know if it's secure or not. For other embedded wallets like Portis, Formatic, Universal Login, Authereum etc, we (= dapp developer) switch to their provider/sdk only if end users make conscious choice (eg: by clicking a button with the vendor logo) of using their solution. On the other hand, yours is included by default so I would like to have extra assurance that there is no known security threat .

@moodysalem
Copy link
Author

I can change the PR to be more similar to those other providers-the polyfill is a small wrapper around the iframe provider. It’s only included by default if the window is in an iframe. I haven’t had an audit but I’m aware of at least one issue that is mitigated by limiting the origins that may embed the dapp in an iframe
ethvault/iframe-provider-polyfill#1

Let me know what steps you would like to see to get this merged

jefflau and others added 3 commits July 23, 2019 15:49
@jefflau
Onion protocol (#401)
d108467 
* Remove contents utils file. Use @ensdomains/ui instead

* Update onion placeholder

* Add onion link
@jefflau
Update ui and lodash
4332bd4
@jefflau
Merge branch 'dev' of github.com:ensdomains/ens-app into dev
c009e17
makoto
makoto reviewed Jul 23, 2019
View reviewed changes
public/index.html Outdated
@@ -64,5 +64,6 @@
To begin the development, run `npm start` or `yarn start`.
To create a production bundle, use `npm run build` or `yarn build`.
-->
<script src="https://unpkg.com/@ethvault/[email protected]/dist/index.js" integrity="sha384-qx1eG3ocmrXxXBwEL+qnP7je980Depwy/J7keRHVnqfEFVXHJ0ruzYIsUX767NEH" crossorigin="anonymous"></script>
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does this have to be included here rather than inside package.json while keeping the integrity hash? We prefer to manage all third party packages in one place.

@moodysalem moodysalem mentioned this pull request Jul 23, 2019
Closed
@moodysalem
Copy link
Author

I did a rebase on the patch branch that github created, which for some reason added all the commits to this PR, so I opened a new one

#405

@moodysalem moodysalem closed this Jul 23, 2019
@moodysalem moodysalem deleted the patch-1 branch July 23, 2019 15:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@makoto makoto makoto left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@moodysalem @makoto @jefflau