add new sanbox options to iframe

api/classes/organizr.class.php

@@ -2040,6 +2040,10 @@ class Organizr
 							'name' => 'Allow Same Origin',
 							'value' => 'allow-same-origin'
 						),
+						array(
+							'name' => 'Allow Orientation Lock',
+							'value' => 'allow-orientation-lock'
+						),
 						array(
 							'name' => 'Allow Pointer Lock',
 							'value' => 'allow-pointer-lock'
@@ -2047,10 +2051,15 @@ class Organizr
 						array(
 							'name' => 'Allow Scripts',
 							'value' => 'allow-scripts'
-						), array(
+						),
+						array(
 							'name' => 'Allow Popups',
 							'value' => 'allow-popups'
 						),
+						array(
+							'name' => 'Allow Popups To Escape Sandbox',
+							'value' => 'allow-popups-to-escape-sandbox'
+						),
 						array(
 							'name' => 'Allow Modals',
 							'value' => 'allow-modals'
@@ -2059,6 +2068,10 @@ class Organizr
 							'name' => 'Allow Top Navigation',
 							'value' => 'allow-top-navigation'
 						),
+						array(
+							'name' => 'Allow Top Navigation By User Activation',
+							'value' => 'allow-top-navigation-by-user-activation'
+						),
 						array(
 							'name' => 'Allow Downloads',
 							'value' => 'allow-downloads'
@@ -2266,24 +2279,31 @@ class Organizr
 			'FYI' => array(
 				array(
 					'type' => 'html',
-					'label' => 'Important Information',
+					'label' => '',
 					'override' => 12,
 					'html' => '
-				<div class="row">
-							<div class="col-lg-12">
-								<div class="panel panel-info">
-									<div class="panel-heading">
-										<span lang="en">Notice</span>
+					<div class="row">
+						<div class="col-lg-12">
+							<div class="panel panel-danger">
+								<div class="panel-heading"><span lang="en">Please Read First</span></div>
+								<div class="panel-wrapper collapse in" aria-expanded="true">
+									<div class="panel-body">
+										<span lang="en">Using multiple SSO application will cause your Cookie Header item to increase.  If you haven\'t increased it by now, please follow this guide</span>
+										<span><a href="https://docs.organizr.app/books/troubleshooting/page/login-error-api-connection-failed" target="_blank">Cookie Header Guide</a></span>
 									</div>
-									<div class="panel-wrapper collapse in" aria-expanded="true">
-										<div class="panel-body">
-											<span lang="en">This is not the same as database authentication - i.e. Plex Authentication | Emby Authentication | FTP Authentication<br/>Click Main on the sub-menu above.</span>
-										</div>
+								</div>
+							</div>
+							<div class="panel panel-info">
+								<div class="panel-heading"><span lang="en">Notice</span></div>
+								<div class="panel-wrapper collapse in" aria-expanded="true">
+									<div class="panel-body">
+										<span lang="en">This is not the same as database authentication - i.e. Plex Authentication | Emby Authentication | FTP Authentication<br/>Click Main on the sub-menu above.</span>
 									</div>
 								</div>
 							</div>
 						</div>
-				'
+					</div>
+					'
 				)
 			),
 			'Plex' => array(

api/config/default.php

@@ -318,7 +318,7 @@ return array(
 	'ombiLimit' => '50',
 	'localIPFrom' => '',
 	'localIPTo' => '',
-	'sandbox' => 'allow-presentation,allow-forms,allow-same-origin,allow-pointer-lock,allow-scripts,allow-popups,allow-modals,allow-top-navigation',
+	'sandbox' => 'allow-presentation,allow-forms,allow-same-origin,allow-pointer-lock,allow-scripts,allow-popups,allow-modals,allow-top-navigation,allow-downloads,allow-orientation-lock,allow-popups-to-escape-sandbox,allow-top-navigation-by-user-activation',
 	'description' => 'Organizr - Accept no others',
 	'debugErrors' => false,
 	'healthChecksURL' => 'https://healthchecks.io/api/v1/checks/',