@chat21/chat21-web-widget 5.1.2-rc6 → 5.1.4

package/CHANGELOG.md

@@ -7,6 +7,23 @@
 *Tiledesk SRL*
 
 
+# 5.1.4
+
+# 5.1.3-rc1
+- **changed** Check if the uploaded file extension directly matches one of those allowed in the control panel (e.g. .xls)
+
+# 5.1.3
+
+# 5.1.2-rc9
+- **added** .xls and .xlsx to file Upload Accept
+
+# 5.1.2-rc8
+- **bug-fixed**: css margin icon
+- **added**: added text verification to delete dangerous patterns
+
+# 5.1.2-rc7
+- **bug-fixed**: ctest button color (#ffffff)
+
 # 5.1.2-rc6
 - **bug-fixed**: cannot upload xlsx files
 
@@ -40,6 +57,8 @@
 # 5.1.1-rc1
 - **bug-fixed**: marked pipe not renders urls
 
+# 5.1.0
+
 # 5.1.0-rc34
 - **bug-fixed**: css fixed carousel
 

package/deploy_amazon_prod.sh

@@ -2,8 +2,18 @@
 version=`node -e 'console.log(require("./package.json").version)'`
 echo "version $version"
 
+npm i
+
+cp src/environments/real_data/environment.prod.ts src/environments/environment.prod.ts
+
 # --build-optimizer=false if localstorage is disabled (webview) appears https://github.com/firebase/angularfire/issues/970
 ng build --configuration="prod" --aot=true
+##--base-href='./v5/' --output-hashing none
+
+### SET HASHING : START ###
+cp ./src/launch_template.js ./dist/browser/launch.js
+node ./src/build_launch.js
+### SET HASHING : END ###
 
 #### FIREBASE #####
 # cd dist
@@ -13,15 +23,19 @@ ng build --configuration="prod" --aot=true
 # cd ..
 
 # #### MQTT #####
-cd dist
+cd dist/browser
 # aws s3 sync . s3://tiledesk-widget/v5/latest/
-aws s3 sync . s3://tiledesk-widget/v6/$version/ --cache-control max-age=300
-aws s3 sync . s3://tiledesk-widget/v6/ --cache-control max-age=300
-cd ..
-
+aws s3 sync . s3://tiledesk-widget/v6/$version/ --cache-control max-age=86400 --exclude='launch.js' #8days
+aws s3 sync . s3://tiledesk-widget/v6/$version/ --cache-control "no-store,no-cache,private" --exclude='*' --include='launch.js'
+aws s3 sync . s3://tiledesk-widget/v6/ --cache-control max-age=86400 --exclude='launch.js' #8days
+aws s3 sync . s3://tiledesk-widget/v6/ --cache-control "no-store,no-cache,private" --exclude='*' --include='launch.js'
+cd ../..
 
 aws  cloudfront create-invalidation --distribution-id E3EJDWEHY08CZZ --paths "/*"
+
+git restore src/environments/environment.pre.ts
+
 echo new version deployed $version on s3://tiledesk-widget/v5
 echo available on https://s3.eu-west-1.amazonaws.com/tiledesk-widget/v5/index.html
 echo https://widget.tiledesk.com/v5/index.html
-echo https://widget.tiledesk.com/v5/$version/index.html
+echo https://widget.tiledesk.com/v5/$version/index.html

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@chat21/chat21-web-widget",
   "author": "Tiledesk SRL",
-  "version": "5.1.2-rc6",
+  "version": "5.1.4",
   "license": "MIT",
   "homepage": "https://www.tiledesk.com",
   "repository": {

package/src/app/component/conversation-detail/conversation/conversation.component.ts

@@ -1414,7 +1414,9 @@ export class ConversationComponent implements OnInit, AfterViewInit, OnChanges {
     this.logger.log('[CONV-COMP] ----> FILE - (dragleave) drag ev ', event)
     if (event.dataTransfer && event.dataTransfer.files) {
       const files = event.dataTransfer.files;
-      const canUploadFile = checkAcceptedFile(files[0].type, this.g.fileUploadAccept)
+      const nameFile = files[0].name;
+      const typeFile = files[0].type;
+      const canUploadFile = checkAcceptedFile(nameFile, typeFile, this.g.fileUploadAccept)
       if(!canUploadFile){
         this.logger.error('[IMAGE-UPLOAD] detectFiles: can not upload current file type--> NOT ALLOWED', this.g.fileUploadAccept)
         return;

package/src/app/component/conversation-detail/conversation-footer/conversation-footer.component.ts

@@ -138,19 +138,19 @@ export class ConversationFooterComponent implements OnInit, OnChanges {
         
         const that = this;
         if (event.target.files && event.target.files[0]) {
+          const nameFile = event.target.files[0].name;
+          const typeFile = event.target.files[0].type;
+          const size = event.target.files[0].size;
 
-          const canUploadFile = checkAcceptedFile(event.target.files[0].type, this.fileUploadAccept)
+          const canUploadFile = checkAcceptedFile(nameFile, typeFile, this.fileUploadAccept)
           if(!canUploadFile){
             this.logger.error('[IMAGE-UPLOAD] detectFiles: can not upload current file type--> NOT ALLOWED', this.fileUploadAccept)
             this.isFilePendingToUpload = false;
             return;
           }
-
-          const nameFile = event.target.files[0].name;
-          const typeFile = event.target.files[0].type;
-          const size = event.target.files[0].size
+          
           const reader = new FileReader();
-            that.logger.debug('[CONV-FOOTER] OK preload: ', nameFile, typeFile, reader);
+            // that.logger.debug('[CONV-FOOTER] OK preload: ', nameFile, typeFile, reader);
             reader.addEventListener('load', function () {
               that.logger.debug('[CONV-FOOTER] addEventListener load', reader.result);
               that.isFileSelected = true;

package/src/app/component/eyeeye-catcher-card/eyeeye-catcher-card.component.ts

@@ -90,23 +90,48 @@ export class EyeeyeCatcherCardComponent implements OnInit {
       }
   }
 
+  // checkIsEmoji() {
+  //   let title = this.g.CALLOUT_TITLE_PLACEHOLDER.trim();
+  //   if (this.g.calloutTitle && this.g.calloutTitle !== '') {
+  //     title = this.g.calloutTitle.trim();
+  //   }
+  //   this.title = title;
+  //   const regex = emojiRegex();
+  //   let match: any;
+  //   // this.logger.debug('[EYEEYE-CATCHER-CARD]-->regex, emojiRegex', regex, emojiRegex)
+  //   while (match = regex.exec(title)) {
+  //     const emoji = match[0];
+  //     this.logger.debug('[EYEEYE-CATCHER-CARD]--> match', match)
+  //     if (title.indexOf(emoji) === 0) {
+  //       this.title = title.replace(emoji, '');
+  //       this.emoticon = emoji;
+  //     }
+  //     break;
+  //   }
+  // }
+
+
   checkIsEmoji() {
     let title = this.g.CALLOUT_TITLE_PLACEHOLDER.trim();
     if (this.g.calloutTitle && this.g.calloutTitle !== '') {
       title = this.g.calloutTitle.trim();
     }
+    
+    // Reset emoticon
+    this.emoticon = null;
     this.title = title;
-    const regex = emojiRegex();
-    let match: any;
-    // this.logger.debug('[EYEEYE-CATCHER-CARD]-->regex, emojiRegex', regex, emojiRegex)
-    while (match = regex.exec(title)) {
+    
+    // Regex per emoji Unicode (compatibile)
+    const regex = /(?:[\u2700-\u27bf]|(?:\ud83c[\udde6-\uddff]){2}|[\ud800-\udbff][\udc00-\udfff]|[\u0023-\u0039]\ufe0f?\u20e3|\u3299|\u3297|\u303d|\u3030|\u24c2|\ud83c[\udd70-\udd71]|\ud83c[\udd7e-\udd7f]|\ud83c\udd8e|\ud83c[\udd91-\udd9a]|\ud83c[\udde6-\uddff]|\ud83c[\ude01-\ude02]|\ud83c\ude1a|\ud83c\ude2f|\ud83c[\ude32-\ude3a]|\ud83c[\ude50-\ude51]|\u203c|\u2049|[\u25aa-\u25ab]|\u25b6|\u25c0|[\u25fb-\u25fe]|\u00a9|\u00ae|\u2122|\u2139|\ud83c\udc04|[\u2600-\u26FF]|\u2b05|\u2b06|\u2b07|\u2b1b|\u2b1c|\u2b50|\u2b55|\u231a|\u231b|\u2328|\u23cf|[\u23e9-\u23f3]|[\u23f8-\u23fa]|\ud83c\udccf|\u2934|\u2935|[\u2190-\u21ff])/;
+    const match = title.match(regex);
+    
+    if (match) {
       const emoji = match[0];
-      this.logger.debug('[EYEEYE-CATCHER-CARD]--> match', match)
-      if (title.indexOf(emoji) === 0) {
-        this.title = title.replace(emoji, '');
-        this.emoticon = emoji;
-      }
-      break;
+      this.logger.debug('[EYEEYE-CATCHER-CARD]--> emoji trovata:', emoji);
+      
+      // Estrai la prima emoji trovata e rimuovila dal testo
+      this.title = title.replace(emoji, '').trim();
+      this.emoticon = emoji;
     }
   }
 
@@ -164,6 +189,3 @@ export class EyeeyeCatcherCardComponent implements OnInit {
 }
 
 
-export default function emojiRegex(): RegExp {
-  return /(?:\uD83C[\uDFFB-\uDFFF])|(?:[\u2700-\u27BF])|(?:\u24C2)|(?:[\u1F680-\u1F6FF])/g;
-}

package/src/app/component/message/avatar/avatar.component.scss

@@ -2,7 +2,7 @@
 .c21-icon-avatar {
     position: relative;
     padding: 0;
-    margin: 10px 0 0 0;
+    margin: 0px 0 0 0;
     height: var(--avatar-height);
     width: var(--avatar-width);
     min-height: var(--avatar-height);

package/src/app/component/message/buttons/action-button/action-button.component.scss

@@ -9,7 +9,7 @@
     --font-family: #{var(--button-in-msg-font-family)};
     --buttonBorderColor: #{var(--button-border-color)};
     --buttonColor: #{var(--button-color)};
-    --buttonBackgroundColor: #{var(--button-background-color)};
+    --buttonBackgroundColor: #ffffff; //#{var(--button-background-color)};
 }
 
 .button-in-msg {

package/src/app/component/message/buttons/link-button/link-button.component.scss

@@ -9,7 +9,7 @@
     --font-family: #{var(--button-in-msg-font-family)};
     --buttonBorderColor: #{var(--button-border-color)};
     --buttonColor: #{var(--button-color)};
-    --buttonBackgroundColor: #{var(--button-background-color)};
+    --buttonBackgroundColor: #ffffff; //#{var(--button-background-color)};
 }
 
 

package/src/app/component/message/buttons/text-button/text-button.component.scss

@@ -9,7 +9,7 @@
     --font-family: #{var(--button-in-msg-font-family)};
     --buttonBorderColor: #{var(--button-border-color)};
     // --buttonColor: #{var(--buttonColor)};
-    --buttonBackgroundColor: #{var(--button-background-color)};
+    --buttonBackgroundColor: #ffffff; //#{var(--button-background-color)};
     --buttonColor: #{var(--button-color)};
 }
 

package/src/app/pipe/marked.pipe.ts

@@ -1,5 +1,6 @@
 import { Pipe, PipeTransform } from '@angular/core';
 import { marked } from 'marked';
+import { BLOCKED_DOMAINS } from '../utils/utils';
 
 
 @Pipe({
@@ -10,6 +11,55 @@ export class MarkedPipe implements PipeTransform {
   transform(value: any): any {
     const renderer = new marked.Renderer();
     renderer.link = function({ href, title, tokens }) {
+      // Normalizza l'href per evitare falsi negativi
+      const normalized = (href || '').trim().toLowerCase();
+      // Pattern pericolosi da cercare nell'intero URL (non solo all'inizio)
+      const dangerousPatterns = [
+        /javascript:/i,           // javascript: protocol
+        /data:/i,                // data: protocol  
+        /vbscript:/i,            // vbscript: protocol
+        /on\w+\s*=/i,           // event handlers (onclick, onload, etc.)
+        /alert\s*\(/i,          // alert() function
+        /eval\s*\(/i,           // eval() function
+        /document\./i,          // document object access
+        /window\./i,            // window object access
+        /\.appendChild\s*\(/i,  // DOM manipulation
+        /\.createElement\s*\(/i, // DOM creation
+        /<script/i,             // script tags
+        /<\/script>/i,          // closing script tags
+        /function\s*\(/i,       // function definitions
+        /\(function/i,          // IIFE patterns
+        /setTimeout\s*\(/i,     // setTimeout
+        /setInterval\s*\(/i,    // setInterval
+        /location\./i,          // location object manipulation
+        /history\./i,           // history object manipulation
+        /localStorage\./i,      // localStorage access
+        /sessionStorage\./i,    // sessionStorage access
+        /cookie/i,              // cookie manipulation
+        /fetch\s*\(/i,          // fetch API
+        /XMLHttpRequest/i,      // XHR
+        /FormData/i,            // FormData
+        /Blob\s*\(/i,           // Blob constructor
+        /FileReader/i,          // FileReader
+        /crypto\./i,            // crypto object
+        /btoa\s*\(/i,           // base64 encoding
+        /atob\s*\(/i,           // base64 decoding
+        /decodeURI/i,           // URI decoding
+        /encodeURI/i,           // URI encoding
+        /String\.fromCharCode/i, // character code conversion
+        /unescape\s*\(/i,       // unescape function
+        /escape\s*\(/i          // escape function
+      ];
+
+      // Controlla se l'URL contiene pattern pericolosi
+      const isDangerous = dangerousPatterns.some(pattern => pattern.test(normalized));
+      if (isDangerous) {
+        // Ritorna solo il testo come stringa, niente <a>
+        return tokens ? tokens.map(token => token.raw).join('') : href || '';
+      }
+
+      // tokens = this.cleanInput(href);
+
       const text = tokens
         ? tokens.map(token => token.raw).join('')
         : href; // fallback se tokens non c'è
@@ -17,7 +67,7 @@ export class MarkedPipe implements PipeTransform {
 
       return `<a href="${href}" target="_blank" rel="noopener noreferrer">${text}</a>`;
     };
-
+    
     marked.setOptions({
       renderer,
       gfm: true,
@@ -35,4 +85,73 @@ export class MarkedPipe implements PipeTransform {
     return value;
   }
 
+
+  private cleanInput(input: string): string {
+    if (!input) return '';
+    let cleaned = (input || '').trim().toLowerCase();
+
+    BLOCKED_DOMAINS.forEach(domain => {
+    const escapedDomain = domain.replace(/\./g, '\\.');
+    // Pattern che copre TUTTI i casi
+    const comprehensivePattern = new RegExp(
+      `(\\[([^\\]]*)\\]\\([^)]*(?:https?://)?(?:www\\.)?${escapedDomain}(?:/[^)]*)?\\))|((?:https?://)?(?:www\\.)?${escapedDomain}(?:/\\S*)?)`,
+      'gi'
+    );
+    
+    cleaned = cleaned.replace(comprehensivePattern, (match, p1, p2, p3) => {
+      // Se è un link markdown [text](url), mantieni il testo
+      if (p2) return `${p2} 🔒`;
+      // Se è un URL diretto, sostituisci con dominio + 🔒
+      if (p3) return `${domain} 🔒`;
+      return match;
+      });
+   
+    });
+
+
+    // Pattern che sostituisce i link pericolosi con solo il testo
+    const dangerousLinkPatterns = [
+      // Sostituisce [text](javascript:...) con "text"
+      /\[([^\]]*)\]\(javascript:[^)]*\)/gi,
+      /\[([^\]]*)\]\(data:[^)]*\)/gi,
+      /\[([^\]]*)\]\(vbscript:[^)]*\)/gi,
+      /\[([^\]]*)\]\([^)]*alert\([^)]*\)/gi
+    ];
+
+    dangerousLinkPatterns.forEach(pattern => {
+      cleaned = cleaned.replace(pattern, '$1'); // $1 = il testo del link
+    });
+
+    // Pattern generali per sicurezza (rimuovono completamente)
+    const generalPatterns = [
+      /<script\b[^<]*(?:(?!<\/script>)<[^<]*)*<\/script>/gi,
+      /<script[^>]*>[\s\S]*?<\/script>/gi, // Script multi-linea
+      /<script[^>]*>.*?<\/script>/gi, // Script single-line
+      /<script[^>]*>/gi, // Solo tag di apertura
+      /<\/script>/gi, // Solo tag di chiusura
+      /javascript:/gi,
+      /vbscript:/gi,
+      /data:/gi,
+      /on\w+\s*=/gi,
+      /alert\(/gi,
+      /eval\(/gi,
+      /document\./gi,
+      /window\./gi,
+      /\(function\s*\(\)\s*\{/gi,
+      /\.appendChild\(/gi,
+      /\.createElement\(/gi,
+      /\.getElementsByTagName\(/gi,
+    
+      // ✅ PATTERN PER FUNZIONI IIFE (Immediately Invoked Function Expression):
+      /\(function\s*\(\s*\)\s*\{[\s\S]*?\}\)\(\s*\)\s*;/gi,
+      /\(function\s*\(\)\s*\{/gi
+    ];
+
+    generalPatterns.forEach(pattern => {
+      cleaned = cleaned.replace(pattern, '');
+    });
+
+    return cleaned;
+  }
+
 }

package/src/app/utils/globals.ts

@@ -406,7 +406,7 @@ export class Globals {
     /**enable user to set a telegram number to chat with */
     this.telegramUsername = ''
     /**enable auto disconnect from messaging after a defined amount of time (s)*/
-    this.fileUploadAccept = "image/*,.pdf,.txt,.mp3"
+    this.fileUploadAccept = '';//image/*,.pdf,.txt,.mp3,.xls,.xlsx"
     this.disconnetTime = 0
 
     this.showWaitTime = true;

package/src/app/utils/utils.ts

@@ -379,17 +379,23 @@ export function getUnique(arr, comp) {
     .filter(e => arr[e]).map(e => arr[e]);
 }
 
-export function checkAcceptedFile(fileType, fileUploadAccept ): boolean{
+export function checkAcceptedFile(nameFile, fileType, fileUploadAccept): boolean {
+  console.log('checkAcceptedFile ------------>', fileType, fileUploadAccept);
   
+  const fileExtension = getFileExtension(nameFile);
+  console.log('[CONV-FOOTER] fileExtension: ', fileExtension);
+
   if (fileUploadAccept === '*/*') {
-    return true
+    return true;
   }
+ 
   // Dividi la stringa fileUploadAccept in un array di tipi accettati
   const acceptedTypes = fileUploadAccept.split(',');
 
   // Verifica se il tipo di file è accettato
   return acceptedTypes.some((accept) => {
     accept = accept.trim();
+    
     // Controlla per i tipi MIME con wildcard, come image/*
     if (accept.endsWith('/*')) {
       const baseMimeType = fileType.split('/')[0]; // Ottieni la parte principale del MIME type
@@ -402,9 +408,39 @@ export function checkAcceptedFile(fileType, fileUploadAccept ): boolean{
     }
 
     // Controlla per le estensioni di file specifiche come .pdf o .txt
-    return fileType === getMimeTypeFromExtension(accept);
+    const expectedMimeType = getMimeTypeFromExtension(accept);
+    if (expectedMimeType && fileType === expectedMimeType) {
+      return true;
+    }
+
+    // // Controlla se l'estensione del file corrisponde direttamente
+    // if (accept.startsWith('.') && fileExtension === accept.substring(1)) {
+    //   return true;
+    // }
+
+    // Controlla se l'estensione del file corrisponde direttamente
+    // Dividi la stringa fileUploadAccept in un array di tipi accettati
+    const acceptedTypes = fileUploadAccept.split(',');
+    //verifica se l'estensione del file è accettata
+    if (acceptedTypes.includes(fileExtension)) {
+      return true;
+    }
+
+    return false;
   });
+}
+
 
+/**
+ * Estrae l'estensione del file dal nome
+ * @param filename Nome del file
+ * @returns Estensione in lowercase (es. 'xlsx', 'pdf', 'jpg')
+ */
+export function getFileExtension(filename: string): string {
+  if (!filename || filename.indexOf('.') === -1) {
+    return '';
+  }
+  return filename.split('.').pop()?.toLowerCase() || '';
 }
 
 function getMimeTypeFromExtension(extension: string): string {
@@ -420,8 +456,37 @@ function getMimeTypeFromExtension(extension: string): string {
       '.docx': 'application/vnd.openxmlformats-officedocument.wordprocessingml.document',
       '.xlsx': 'application/vnd.openxmlformats-officedocument.spreadsheetml.sheet',
       '.xls': 'application/vnd.ms-excel',
-      '.wav' : 'audio/wav'
+      '.wav': 'audio/wav'
       // Aggiungi altri tipi MIME se necessario
   };
   return mimeTypes[extension] || '';
 }
+
+export const BLOCKED_DOMAINS = [
+  // DOMINI MALEVOLI NOTI
+ 'attacker.me', 'evil.com', 'malicious.site', 'hacker.com', 'phishing.com',
+ 'malware.com', 'ransomware.com', 'trojan.com', 'virus.com', 'spyware.com',
+ 
+ // DOMINI DI PHISHING
+ 'phish.com', 'stealer.com', 'credential-thief.com', 'login-stealer.com',
+ 'password-stealer.com', 'banking-phish.com', 'paypal-phish.com',
+ 
+ // DOMINI DI SPAM
+ 'spam.com', 'spammer.com', 'bulk-email.com', 'unsolicited.com',
+ 
+ // DOMINI TRUFFA
+ 'scam.com', 'fraud.com', 'fake.com', 'counterfeit.com', 'hoax.com',
+ 
+ // DOMINI EXPLOIT
+ 'exploit.com', 'vulnerability.com', 'zero-day.com', 'payload.com',
+ 'shellcode.com', 'backdoor.com', 'rootkit.com',
+ 
+ // DOMINI BOTNET
+ 'botnet.com', 'zombie-pc.com', 'command-control.com', 'c2-server.com',
+ 
+ // DOMINI ADWARE/MALVERTISING
+ 'adware.com', 'malvertising.com', 'popup-ads.com', 'unwanted-ads.com',
+ 
+ // DOMINI GENERICI PERICOLOSI
+ 'danger.com', 'unsafe.com', 'insecure.com', 'threat.com', 'risk.com',
+]

package/src/chat21-core/providers/firebase/firebase-conversation-handler.ts

@@ -387,9 +387,9 @@ export class FirebaseConversationHandler extends ConversationHandlerService {
                 complement = INFO_SUPPORT_USER_ADDED_COMPLEMENT;
             } else {
 
-                if (message.attributes.messagelabel.parameters.fullname) {
+                if (message.attributes.messagelabel.parameters.firstname) {
                     // other user has been added to the group (and he has a fullname)
-                    subject = message.attributes.messagelabel.parameters.fullname;
+                    subject = message.attributes.messagelabel.parameters.firstname;
                     verb = INFO_SUPPORT_USER_ADDED_VERB;
                     complement = INFO_SUPPORT_USER_ADDED_COMPLEMENT;
                 } else {

package/src/chat21-core/providers/mqtt/mqtt-conversation-handler.ts

@@ -382,14 +382,14 @@ export class MQTTConversationHandler extends ConversationHandlerService {
                 verb = INFO_SUPPORT_USER_ADDED_YOU_VERB;
                 complement = INFO_SUPPORT_USER_ADDED_COMPLEMENT;
             } else {
-                if (message.attributes.messagelabel.parameters.fullname) {
+                if (message.attributes.messagelabel.parameters.firstname) {
                     // other user has been added to the group (and he has a fullname)
-                    subject = message.attributes.messagelabel.parameters.fullname;
+                    subject = message.attributes.messagelabel.parameters.firstname;
                     verb = INFO_SUPPORT_USER_ADDED_VERB;
                     complement = INFO_SUPPORT_USER_ADDED_COMPLEMENT;
                 } else {
                     // other user has been added to the group (and he has not a fullname, so use hes useruid)
-                    subject = message.attributes.messagelabel.parameters.member_id;
+                    subject = message.attributes.messagelabel.parameters.firstname;
                     verb = INFO_SUPPORT_USER_ADDED_VERB;
                     complement = INFO_SUPPORT_USER_ADDED_COMPLEMENT;
                 }

package/src/chat21-core/utils/utils.ts

@@ -620,6 +620,10 @@ function componentFromStr(numStr, percent) {
 export function isAllowedUrlInText(text: string, allowedUrls: string[]) {
   const urlsInMessage = extractUrls(text);
 
+  if (urlsInMessage.length === 0) {
+    return true; // Nessun URL => testo ammesso
+  }
+  
   const allowedPatterns = allowedUrls.map((url) => {
     try {
       // Prova a estrarre il dominio da una URL completa