I have built a report in Dash, which I am hosting on aws elastic beanstalk.
Now, I'd like to to emded this report into our company's internal google sites page.
I tried to use <iframe>, but that does not work. Although just pasting the link to a browser works.
<iframe src="http://path.elasticbeanstalk.com/" width=700 height=600>
Furthermore, I have to make sure that nobody else can access the report if the link gets outside. For that, I was playing with cognito, but I don't know if I should give access to specific google accounts or just the google site somehow?
Related
I have created a game in google sites and would like to use cookies to track the player's highscore. I am not sure if google sites allows cookies in embedded html. I checked the code of the google sites page and figured out that my embedded html is actually stored as an iframe, which as far as I know, does not allow cookies.
It will be difficult to implement it since like you said its in an iframe and the domain of the iframe is dynamically generated. A similar issue is raised here. An alternative option would be to create a web app on firebase and link it with your google sites, but this could be slightly different from your initial idea of keeping track of user's score on the browser.
I'm using Google Places API to display POIs on a website. According to Google's policy, I'm showing the "powered by Google" logo on the page. But it's not clear whether I'm allowed to load the logo directly from Google's server or I must serve it from my own server!
On https://developers.google.com/places/web-service/policies they are providing the zip containing the logo. But I'm loading the logo directly from developers.google.com:
<img src="https://developers.google.com/places/documentation/images/powered-by-google-on-white.png">
Is it (legally) allowed to do so?
Never experienced such thing, just sharing my idea on that.
I can't see any such thing in policy regarding weather you need to load from own server or using public google URI.
But there might be one potential risk when using direct google public url, in case of google change that resource path, your site gonna be broken and it wont show the image any more. so for better control, you should use your own server I guess.
I had built a Google UI Apps Script in my Drive account. It works great.
I would like to embed it on my domain. I know that I can embed it as a gadget on a Google site, but I don't want Google's URL appearing in my website.
I have a word-press site and I would like to embed this UI script into a page/post on my word-press site or create a stand alone page on my domain with this script on it.
Is this possible?
I just don't want my users to be redirected off my site and see the long ugly domain of https://script.google.com/a/macros/*************
Any suggestions?
This isn't currently supported.
See (duplicate) Embedding Google Apps Script WebApp in WordPress Page.
Visit Issue 852 and star it for updates. (There are also some potential work-arounds described in the issue comments.)
I have a service and would like clients to be able to place this service on their website. I am looking at doing this by using an iframe. I will provide the code and they can just copy and paste the code to show the functionality. Each client will be discovered by the query string.
There is a concern that anyone can look at the source of the website, copy the iframe and add it to their own website therefore using the service and charging the original client. I obviously want to stop this.
Ideally, I would like to verify that the website that is using the iframe is linked to the client who registered to use the service. Is this possible at all? I know there are issues with cross domain security.
If it isn't possible, I guess I would need to create a widget instead.
For each client, have a whitelist of web sites that can embed the iframe. Then check the 'referer' header against that list whenever the page inside the iframe is loaded.
Or if http headers prove to be unreliable try using javascript, via parent.document.location.href
I want to use google drive to store the files, but allow the users of my website to be able to edit them transparently, so that they don't have to go to google drive's website.
Is this possible with the current API? Thus far I have only seen how to create an app for them to install in google drive, or doing something like DrEdit (https://developers.google.com/drive/examples/), which parses the files to JSON and uses the ACE editor, which is definitely not what I want.
EDIT:
I believe it is not possible to do this with Google Drive, I've decided to go with Zoho Docs instead.
Yes it's possible. The biggest consideration is how much formatting you want to support. Eg. if it's plain text, it's very simple. If you want to support character or layout formatting, it becomes more complex.
I don't believe its possible to embed the editor (or even embed a preview!) using an iframe, because if you look at how the google docs page loads, it first redirects you to the login page, and that automatically logs you in if you are already logged in, and redirects you back to the docs editor.
This means that the iframe would have to at least pass through the login page, even if the user doesn't need to enter anything. However, google's login page has the x-frame-option header set to SAMEORIGIN (or deny?), and thus, the browser refuses to display it, and thus you can't actually get logged in!
The only way I've found to enable just preview embedding (not editing), is to publish the document first (via the File->publish to web menu item).