add-to-calendar-button 2.3.2 → 2.3.4

package/dist/commonjs/index.js

@@ -7,22 +7,22 @@ const tzlibActions = require('timezones-ical-library');
  *  Add to Calendar Button
  *  ++++++++++++++++++++++
  *
- *  Version: 2.3.2
+ *  Version: 2.3.4
  *  Creator: Jens Kuerschner (https://jenskuerschner.de)
  *  Project: https://github.com/add2cal/add-to-calendar-button
  *  License: Elastic License 2.0 (ELv2) (https://github.com/add2cal/add-to-calendar-button/blob/main/LICENSE.txt)
  *  Note:    DO NOT REMOVE THE COPYRIGHT NOTICE ABOVE!
  *
  */
-const atcbVersion = '2.3.2';
-const atcbCssTemplate = {
+const atcbVersion = '2.3.4';
+const atcbCssTemplate = {
   if (typeof window === 'undefined') {
     return false;
   } else {
     return true;
   }
 };
-const isiOS = isBrowser()
+const atcbIsiOS = atcbIsBrowser()
   ? () => {
       if ((/iPad|iPhone|iPod/i.test(navigator.userAgent || navigator.vendor || window.opera) && !window.MSStream) || (navigator.platform === 'MacIntel' && navigator.maxTouchPoints > 1)) {
         return true;
@@ -33,7 +33,7 @@ const isiOS = isBrowser()
   : () => {
       return false;
     };
-const isAndroid = isBrowser()
+const atcbIsAndroid = atcbIsBrowser()
   ? () => {
       if (/android/i.test(navigator.userAgent || navigator.vendor || window.opera) && !window.MSStream) {
         return true;
@@ -44,7 +44,7 @@ const isAndroid = isBrowser()
   : () => {
       return false;
     };
-/*const isChrome = isBrowser()
+/*const isChrome = atcbIsBrowser()
   ? () => {
       if (/chrome|chromium|crios|google inc/i.test(navigator.userAgent || navigator.vendor)) {
         return true;
@@ -55,7 +55,7 @@ const isAndroid = isBrowser()
   : () => {
       return false;
     };*/
-const isSafari = isBrowser()
+const atcbIsSafari = atcbIsBrowser()
   ? () => {
       if (/^((?!chrome|android|crios|fxios).)*safari/i.test(navigator.userAgent || navigator.vendor)) {
         return true;
@@ -66,14 +66,14 @@ const isSafari = isBrowser()
   : () => {
       return false;
     };
-const isMobile = () => {
-  if (isAndroid() || isiOS()) {
+const atcbIsMobile = () => {
+  if (atcbIsAndroid() || atcbIsiOS()) {
     return true;
   } else {
     return false;
   }
 };
-const isWebView = isBrowser()
+const atcbIsWebView = atcbIsBrowser()
   ? () => {
       if (/(; ?wv|(iPhone|iPod|iPad).*AppleWebKit(?!.*Safari))/i.test(navigator.userAgent || navigator.vendor)) {
         return true;
@@ -84,7 +84,7 @@ const isWebView = isBrowser()
   : () => {
       return false;
     };
-const isProblematicWebView = isBrowser()
+const atcbIsProblematicWebView = atcbIsBrowser()
   ? () => {
       if (/(Instagram)/i.test(navigator.userAgent || navigator.vendor || window.opera)) {
         return true;
@@ -95,7 +95,7 @@ const isProblematicWebView = isBrowser()
   : () => {
       return false;
     };
-const atcbDefaultTarget = isWebView() ? '_system' : '_blank';
+const atcbDefaultTarget = atcbIsWebView() ? '_system' : '_blank';
 const atcbOptions = ['apple', 'google', 'ical', 'ms365', 'outlookcom', 'msteams', 'yahoo'];
 const atcbValidRecurrOptions = ['apple', 'google', 'ical'];
 const atcbInvalidSubscribeOptions = ['msteams'];
@@ -103,6 +103,7 @@ const atcbiOSInvalidOptions = ['ical'];
 const atcbStates = [];
 const atcbWcParams = [
   'debug',
+  'cspnonce',
   'name',
   'dates',
   'description',
@@ -324,8 +325,8 @@ function atcb_decorate_data_options(data) {
       iCalGiven = true;
     }
     if (
-      (isiOS() && atcbiOSInvalidOptions.includes(optionName)) ||
-      (data.recurrence != null && data.recurrence != '' && (!atcbValidRecurrOptions.includes(optionName) || (data.recurrence_until != null && data.recurrence_until != '' && (optionName === 'apple' || optionName === 'ical')) || (isiOS() && optionName === 'google'))) ||
+      (atcbIsiOS() && atcbiOSInvalidOptions.includes(optionName)) ||
+      (data.recurrence != null && data.recurrence != '' && (!atcbValidRecurrOptions.includes(optionName) || (data.recurrence_until != null && data.recurrence_until != '' && (optionName === 'apple' || optionName === 'ical')) || (atcbIsiOS() && optionName === 'google'))) ||
       (data.subscribe && atcbInvalidSubscribeOptions.includes(optionName))
     ) {
       continue;
@@ -334,13 +335,13 @@ function atcb_decorate_data_options(data) {
     data.optionLabels.push(optionLabel);
   }
   if (newOptions.length === 0) {
-    if (!isiOS()) {
+    if (!atcbIsiOS()) {
       newOptions.push('ical');
       data.optionLabels.push('');
     }
     iCalGiven = true;
   }
-  if (isiOS() && iCalGiven && !appleGiven) {
+  if (atcbIsiOS() && iCalGiven && !appleGiven) {
     newOptions.push('apple');
     data.optionLabels.push('');
   }
@@ -405,7 +406,7 @@ function atcb_decorate_sizes(size) {
   return sizes;
 }
 function atcb_decorate_light_mode(lightMode = '') {
-  if (lightMode == 'system' && isBrowser()) {
+  if (lightMode == 'system' && atcbIsBrowser()) {
     const prefersDarkScheme = window.matchMedia('(prefers-color-scheme: dark)');
     return prefersDarkScheme.matches ? 'dark' : 'light';
   }
@@ -1964,6 +1965,13 @@ function atcb_generate_modal_host(host, data, reset = true) {
 
 function atcb_generate_rich_data(data, parent) {
   const schemaEl = document.createElement('script');
+  if (parent.hasAttribute('cspnonce')) {    
+    const cspnonceRegex = /[`'"()[\]{}<>\s]/;
+    if (cspnonceRegex.test(parent.getAttribute('cspnonce'))) {
+      throw new Error("cspnonce input contains forbidden characters.");
+    }
+    schemaEl.setAttribute('nonce', parent.getAttribute('cspnonce'));
+  }
   schemaEl.type = 'application/ld+json';
   const schemaContentMulti = [];
   if (data.dates.length > 1) {
@@ -2170,7 +2178,7 @@ function atcb_generate_subscribe_links(host, linkType, data, keyboardTrigger) {
   const adjustedFileUrl = data.icsFile.replace('https://', 'webcal://');
   switch (linkType) {
     case 'ical': // also for apple (see above)
-      if (isMobile()) {
+      if (atcbIsMobile()) {
         atcb_subscribe_ical(data.icsFile);
         break;
       }
@@ -2283,7 +2291,7 @@ function atcb_generate_google(data) {
   }
   if (data.location != null && data.location != '') {
     urlParts.push('location=' + encodeURIComponent(data.location));
-    if (isiOS()) {
+    if (atcbIsiOS()) {
       if (tmpDataDescription.length > 0) {
         tmpDataDescription.push('<br><br>');
       }
@@ -2329,7 +2337,7 @@ function atcb_generate_yahoo(data) {
 function atcb_generate_microsoft(data, type = '365') {
   const urlParts = [];
   const basePath = (function () {
-    if (isMobile()) {
+    if (atcbIsMobile()) {
       return '/calendar/0/deeplink/compose?path=%2Fcalendar%2Faction%2Fcompose&rru=addevent';
     }
     return '/calendar/action/compose?rru=addevent';
@@ -2363,7 +2371,7 @@ function atcb_generate_msteams(data) {
   const urlParts = [];
   const baseUrl = 'https://teams.microsoft.com/l/meeting/new?';
   const formattedDate = atcb_generate_time(data, 'delimiters', 'msteams', true);
-  if (!formattedDate.allday || isMobile()) {
+  if (!formattedDate.allday || atcbIsMobile()) {
     urlParts.push('startTime=' + encodeURIComponent(formattedDate.start));
     urlParts.push('endTime=' + encodeURIComponent(formattedDate.end));
   } else {
@@ -2410,7 +2418,7 @@ function atcb_generate_ical(host, data, subEvent = 'all', keyboardTrigger = fals
     }
     return '';
   })();
-  if (givenIcsFile != '' && (!isiOS() || (isiOS() && isWebView() && data.bypassWebViewCheck == true))) {
+  if (givenIcsFile != '' && (!atcbIsiOS() || (atcbIsiOS() && atcbIsWebView() && data.bypassWebViewCheck == true))) {
     atcb_save_file(givenIcsFile, filename);
     return;
   }
@@ -2507,7 +2515,7 @@ function atcb_generate_ical(host, data, subEvent = 'all', keyboardTrigger = fals
     }
     return 'data:text/calendar;charset=utf-8,' + encodeURIComponent(ics_lines.join('\r\n'));
   })();
-  if ((isiOS() && !isSafari()) || (isWebView() && (isiOS() || (isAndroid() && isProblematicWebView())))) {
+  if ((atcbIsiOS() && !atcbIsSafari()) || (atcbIsWebView() && (atcbIsiOS() || (atcbIsAndroid() && atcbIsProblematicWebView())))) {
     atcb_ical_copy_note(host, dataUrl, data, keyboardTrigger);
     return;
   }
@@ -2533,7 +2541,7 @@ function atcb_determine_ical_filename(data, subEvent) {
 }
 function atcb_ical_copy_note(host, dataUrl, data, keyboardTrigger) {
   atcb_copy_to_clipboard(dataUrl);
-  if (isiOS() && !isSafari()) {
+  if (atcbIsiOS() && !atcbIsSafari()) {
     atcb_create_modal(
       host,
       data,
@@ -2561,7 +2569,7 @@ function atcb_save_file(file, filename) {
     const save = document.createElementNS('http://www.w3.org/1999/xhtml', 'a');
     save.rel = 'noopener';
     save.href = file;
-    if (isMobile()) {
+    if (atcbIsMobile()) {
       save.target = '_self';
     } else {
       save.target = '_blank';
@@ -2627,11 +2635,11 @@ function atcb_generate_time(data, style = 'delimiters', targetCal = 'general', a
     const endDate = data.endDate.split('-');
     const newStartDate = new Date(Date.UTC(startDate[0], startDate[1] - 1, startDate[2], 12, 0, 0));
     const newEndDate = new Date(Date.UTC(endDate[0], endDate[1] - 1, endDate[2], 12, 0, 0));
-    if (targetCal === 'google' || (targetCal === 'microsoft' && !isMobile()) || targetCal === 'msteams' || targetCal === 'ical') {
+    if (targetCal === 'google' || (targetCal === 'microsoft' && !atcbIsMobile()) || targetCal === 'msteams' || targetCal === 'ical') {
       newEndDate.setDate(newEndDate.getDate() + 1);
     }
     if (targetCal === 'msteams') {
-      if (isMobile()) {
+      if (atcbIsMobile()) {
         const offset = newStartDate.getTimezoneOffset();
         const formattedOffset = (function () {
           if (offset < 0) {
@@ -2695,7 +2703,7 @@ function atcb_secure_url(url, throwError = true) {
   }
 }
 function atcb_validEmail(email) {
-  if (!/^.{0,70}@.{1,30}\.[\w.]{2,9}$/.test(email)) {
+  if (!/^.{0,70}@.{1,30}\.[a-zA-Z]{2,9}$/.test(email)) {
     return false;
   }
   return true;
@@ -2840,7 +2848,7 @@ function atcb_copy_to_clipboard(dataString) {
   tmpInput.contentEditable = true;
   tmpInput.readOnly = false;
   tmpInput.value = dataString;
-  if (isiOS()) {
+  if (atcbIsiOS()) {
     var range = document.createRange();
     range.selectNodeContents(tmpInput);
     var selection = window.getSelection();
@@ -2889,7 +2897,7 @@ function atcb_log_event(event, trigger, identifier) {
   if (parentEl) {
     parentEl.setAttribute('atcb-last-event', event + ':' + trigger);
   }
-  if (isBrowser()) {
+  if (atcbIsBrowser()) {
     atcb_push_to_data_layer(event, trigger);
   }
 }
@@ -3466,7 +3474,7 @@ let atcbInitialGlobalInit = false;
 let atcbBtnCount = 0;
 const lightModeMutationObserver = [];
 const template = `<div class="atcb-initialized" style="display:none;position:relative;width:fit-content;"></div>`;
-if (isBrowser()) {
+if (atcbIsBrowser()) {
   class AddToCalendarButton extends HTMLElement {
     constructor() {
       super();
@@ -3707,11 +3715,18 @@ function atcb_set_light_mode(shadowRoot, data) {
   shadowRoot.host.classList.add('atcb-' + hostLightMode);
 }
 function atcb_load_css(host, rootObj = null, style = '', inline = false, buttonsList = false, customCss = '') {
+  const cspnonceRegex = /[`'"()[\]{}<>\s]/;
   if (!document.getElementById('atcb-global-style')) {
     const cssGlobalContent = document.createElement('style');
     cssGlobalContent.id = 'atcb-global-style';
     const scrollBarWidth = window.innerWidth - document.documentElement.clientWidth;
     cssGlobalContent.innerText = '.atcb-modal-no-scroll { overflow-y: hidden !important; -webkit-overflow-scrolling: touch; } body.atcb-modal-no-scroll { padding-right: ' + scrollBarWidth + 'px; }';
+    if (host.host.hasAttribute('cspnonce')) {
+      if (cspnonceRegex.test(host.host.getAttribute('cspnonce'))) {
+        throw new Error("cspnonce input contains forbidden characters.");
+      }
+      cssGlobalContent.setAttribute('nonce', host.host.getAttribute('cspnonce'));
+    }
     document.head.append(cssGlobalContent);
   }
   if (customCss != '' && style == 'custom') {
@@ -3719,6 +3734,12 @@ function atcb_load_css(host, rootObj = null, style = '', inline = false, buttons
     cssFile.setAttribute('rel', 'stylesheet');
     cssFile.setAttribute('type', 'text/css');
     cssFile.setAttribute('href', customCss);
+    if (host.host.hasAttribute('cspnonce')) {
+      if (cspnonceRegex.test(host.host.getAttribute('cspnonce'))) {
+        throw new Error("cspnonce input contains forbidden characters.");
+      }
+      cssFile.setAttribute('nonce', host.host.getAttribute('cspnonce'));
+    }
     if (rootObj == null) {
       host.host.style.display = 'none';
       loadExternalCssAsynch(cssFile, host, host.host);
@@ -3732,6 +3753,12 @@ function atcb_load_css(host, rootObj = null, style = '', inline = false, buttons
   }
   if (style != 'none' && atcbCssTemplate[`${style}`] != null) {
     const cssContent = document.createElement('style');
+    if (host.host.hasAttribute('cspnonce')) {
+      if (cspnonceRegex.test(host.host.getAttribute('cspnonce'))) {
+        throw new Error("cspnonce input contains forbidden characters.");
+      }
+      cssContent.setAttribute('nonce', host.host.getAttribute('cspnonce'));
+    }
     const overrideDefaultCss = (function () {
       if (host.host.hasAttribute('styleLight')) {
         const output = ':host { ' + atcb_secure_content(host.host.getAttribute('styleLight').replace(/(\\r\\n|\\n|\\r)/g, ''), false) + ' }';
@@ -3793,7 +3820,7 @@ function atcb_render_debug_msg(host, error) {
 }
 // eslint-disable-next-line @typescript-eslint/no-unused-vars
 function atcb_action(data, triggerElement, keyboardTrigger = false) {
-  if (!isBrowser()) {
+  if (!atcbIsBrowser()) {
     return;
   }
   data = atcb_secure_content(data);
@@ -3849,7 +3876,7 @@ function atcb_action(data, triggerElement, keyboardTrigger = false) {
   atcb_log_event('initialization', data.identifier, data.identifier);
   if (!data.blockInteraction) {
     let host = null;
-    if (!oneOption || (data.options[0] !== 'apple' && data.options[0] !== 'ical') || (data.dates && data.dates.length > 1 && data.dates.organizer) || (isMobile())) {
+    if (!oneOption || (data.options[0] !== 'apple' && data.options[0] !== 'ical') || (data.dates && data.dates.length > 1 && data.dates.organizer) || (atcbIsMobile())) {
       host = document.createElement('div');
       host.id = 'atcb-customTrigger-' + data.identifier + '-host';
       if (root == document.body) {
@@ -3928,7 +3955,7 @@ function atcb_get_pro_data(licenseKey) {
   return data;
 }
 function atcb_set_global_event_listener(host, data) {
-  if (!isBrowser()) {
+  if (!atcbIsBrowser()) {
     return;
   }
   if (data.lightMode == 'bodyScheme') {

package/dist/module/index.js

@@ -6,22 +6,22 @@ import { tzlib_get_ical_block, tzlib_get_offset, tzlib_get_timezones } from 'tim
  *  Add to Calendar Button
  *  ++++++++++++++++++++++
  *
- *  Version: 2.3.2
+ *  Version: 2.3.4
  *  Creator: Jens Kuerschner (https://jenskuerschner.de)
  *  Project: https://github.com/add2cal/add-to-calendar-button
  *  License: Elastic License 2.0 (ELv2) (https://github.com/add2cal/add-to-calendar-button/blob/main/LICENSE.txt)
  *  Note:    DO NOT REMOVE THE COPYRIGHT NOTICE ABOVE!
  *
  */
-const atcbVersion = '2.3.2';
-const atcbCssTemplate = {
+const atcbVersion = '2.3.4';
+const atcbCssTemplate = {
   if (typeof window === 'undefined') {
     return false;
   } else {
     return true;
   }
 };
-const isiOS = isBrowser()
+const atcbIsiOS = atcbIsBrowser()
   ? () => {
       if ((/iPad|iPhone|iPod/i.test(navigator.userAgent || navigator.vendor || window.opera) && !window.MSStream) || (navigator.platform === 'MacIntel' && navigator.maxTouchPoints > 1)) {
         return true;
@@ -32,7 +32,7 @@ const isiOS = isBrowser()
   : () => {
       return false;
     };
-const isAndroid = isBrowser()
+const atcbIsAndroid = atcbIsBrowser()
   ? () => {
       if (/android/i.test(navigator.userAgent || navigator.vendor || window.opera) && !window.MSStream) {
         return true;
@@ -43,7 +43,7 @@ const isAndroid = isBrowser()
   : () => {
       return false;
     };
-/*const isChrome = isBrowser()
+/*const isChrome = atcbIsBrowser()
   ? () => {
       if (/chrome|chromium|crios|google inc/i.test(navigator.userAgent || navigator.vendor)) {
         return true;
@@ -54,7 +54,7 @@ const isAndroid = isBrowser()
   : () => {
       return false;
     };*/
-const isSafari = isBrowser()
+const atcbIsSafari = atcbIsBrowser()
   ? () => {
       if (/^((?!chrome|android|crios|fxios).)*safari/i.test(navigator.userAgent || navigator.vendor)) {
         return true;
@@ -65,14 +65,14 @@ const isSafari = isBrowser()
   : () => {
       return false;
     };
-const isMobile = () => {
-  if (isAndroid() || isiOS()) {
+const atcbIsMobile = () => {
+  if (atcbIsAndroid() || atcbIsiOS()) {
     return true;
   } else {
     return false;
   }
 };
-const isWebView = isBrowser()
+const atcbIsWebView = atcbIsBrowser()
   ? () => {
       if (/(; ?wv|(iPhone|iPod|iPad).*AppleWebKit(?!.*Safari))/i.test(navigator.userAgent || navigator.vendor)) {
         return true;
@@ -83,7 +83,7 @@ const isWebView = isBrowser()
   : () => {
       return false;
     };
-const isProblematicWebView = isBrowser()
+const atcbIsProblematicWebView = atcbIsBrowser()
   ? () => {
       if (/(Instagram)/i.test(navigator.userAgent || navigator.vendor || window.opera)) {
         return true;
@@ -94,7 +94,7 @@ const isProblematicWebView = isBrowser()
   : () => {
       return false;
     };
-const atcbDefaultTarget = isWebView() ? '_system' : '_blank';
+const atcbDefaultTarget = atcbIsWebView() ? '_system' : '_blank';
 const atcbOptions = ['apple', 'google', 'ical', 'ms365', 'outlookcom', 'msteams', 'yahoo'];
 const atcbValidRecurrOptions = ['apple', 'google', 'ical'];
 const atcbInvalidSubscribeOptions = ['msteams'];
@@ -102,6 +102,7 @@ const atcbiOSInvalidOptions = ['ical'];
 const atcbStates = [];
 const atcbWcParams = [
   'debug',
+  'cspnonce',
   'name',
   'dates',
   'description',
@@ -323,8 +324,8 @@ function atcb_decorate_data_options(data) {
       iCalGiven = true;
     }
     if (
-      (isiOS() && atcbiOSInvalidOptions.includes(optionName)) ||
-      (data.recurrence != null && data.recurrence != '' && (!atcbValidRecurrOptions.includes(optionName) || (data.recurrence_until != null && data.recurrence_until != '' && (optionName === 'apple' || optionName === 'ical')) || (isiOS() && optionName === 'google'))) ||
+      (atcbIsiOS() && atcbiOSInvalidOptions.includes(optionName)) ||
+      (data.recurrence != null && data.recurrence != '' && (!atcbValidRecurrOptions.includes(optionName) || (data.recurrence_until != null && data.recurrence_until != '' && (optionName === 'apple' || optionName === 'ical')) || (atcbIsiOS() && optionName === 'google'))) ||
       (data.subscribe && atcbInvalidSubscribeOptions.includes(optionName))
     ) {
       continue;
@@ -333,13 +334,13 @@ function atcb_decorate_data_options(data) {
     data.optionLabels.push(optionLabel);
   }
   if (newOptions.length === 0) {
-    if (!isiOS()) {
+    if (!atcbIsiOS()) {
       newOptions.push('ical');
       data.optionLabels.push('');
     }
     iCalGiven = true;
   }
-  if (isiOS() && iCalGiven && !appleGiven) {
+  if (atcbIsiOS() && iCalGiven && !appleGiven) {
     newOptions.push('apple');
     data.optionLabels.push('');
   }
@@ -404,7 +405,7 @@ function atcb_decorate_sizes(size) {
   return sizes;
 }
 function atcb_decorate_light_mode(lightMode = '') {
-  if (lightMode == 'system' && isBrowser()) {
+  if (lightMode == 'system' && atcbIsBrowser()) {
     const prefersDarkScheme = window.matchMedia('(prefers-color-scheme: dark)');
     return prefersDarkScheme.matches ? 'dark' : 'light';
   }
@@ -1963,6 +1964,13 @@ function atcb_generate_modal_host(host, data, reset = true) {
 
 function atcb_generate_rich_data(data, parent) {
   const schemaEl = document.createElement('script');
+  if (parent.hasAttribute('cspnonce')) {    
+    const cspnonceRegex = /[`'"()[\]{}<>\s]/;
+    if (cspnonceRegex.test(parent.getAttribute('cspnonce'))) {
+      throw new Error("cspnonce input contains forbidden characters.");
+    }
+    schemaEl.setAttribute('nonce', parent.getAttribute('cspnonce'));
+  }
   schemaEl.type = 'application/ld+json';
   const schemaContentMulti = [];
   if (data.dates.length > 1) {
@@ -2169,7 +2177,7 @@ function atcb_generate_subscribe_links(host, linkType, data, keyboardTrigger) {
   const adjustedFileUrl = data.icsFile.replace('https://', 'webcal://');
   switch (linkType) {
     case 'ical': // also for apple (see above)
-      if (isMobile()) {
+      if (atcbIsMobile()) {
         atcb_subscribe_ical(data.icsFile);
         break;
       }
@@ -2282,7 +2290,7 @@ function atcb_generate_google(data) {
   }
   if (data.location != null && data.location != '') {
     urlParts.push('location=' + encodeURIComponent(data.location));
-    if (isiOS()) {
+    if (atcbIsiOS()) {
       if (tmpDataDescription.length > 0) {
         tmpDataDescription.push('<br><br>');
       }
@@ -2328,7 +2336,7 @@ function atcb_generate_yahoo(data) {
 function atcb_generate_microsoft(data, type = '365') {
   const urlParts = [];
   const basePath = (function () {
-    if (isMobile()) {
+    if (atcbIsMobile()) {
       return '/calendar/0/deeplink/compose?path=%2Fcalendar%2Faction%2Fcompose&rru=addevent';
     }
     return '/calendar/action/compose?rru=addevent';
@@ -2362,7 +2370,7 @@ function atcb_generate_msteams(data) {
   const urlParts = [];
   const baseUrl = 'https://teams.microsoft.com/l/meeting/new?';
   const formattedDate = atcb_generate_time(data, 'delimiters', 'msteams', true);
-  if (!formattedDate.allday || isMobile()) {
+  if (!formattedDate.allday || atcbIsMobile()) {
     urlParts.push('startTime=' + encodeURIComponent(formattedDate.start));
     urlParts.push('endTime=' + encodeURIComponent(formattedDate.end));
   } else {
@@ -2409,7 +2417,7 @@ function atcb_generate_ical(host, data, subEvent = 'all', keyboardTrigger = fals
     }
     return '';
   })();
-  if (givenIcsFile != '' && (!isiOS() || (isiOS() && isWebView() && data.bypassWebViewCheck == true))) {
+  if (givenIcsFile != '' && (!atcbIsiOS() || (atcbIsiOS() && atcbIsWebView() && data.bypassWebViewCheck == true))) {
     atcb_save_file(givenIcsFile, filename);
     return;
   }
@@ -2506,7 +2514,7 @@ function atcb_generate_ical(host, data, subEvent = 'all', keyboardTrigger = fals
     }
     return 'data:text/calendar;charset=utf-8,' + encodeURIComponent(ics_lines.join('\r\n'));
   })();
-  if ((isiOS() && !isSafari()) || (isWebView() && (isiOS() || (isAndroid() && isProblematicWebView())))) {
+  if ((atcbIsiOS() && !atcbIsSafari()) || (atcbIsWebView() && (atcbIsiOS() || (atcbIsAndroid() && atcbIsProblematicWebView())))) {
     atcb_ical_copy_note(host, dataUrl, data, keyboardTrigger);
     return;
   }
@@ -2532,7 +2540,7 @@ function atcb_determine_ical_filename(data, subEvent) {
 }
 function atcb_ical_copy_note(host, dataUrl, data, keyboardTrigger) {
   atcb_copy_to_clipboard(dataUrl);
-  if (isiOS() && !isSafari()) {
+  if (atcbIsiOS() && !atcbIsSafari()) {
     atcb_create_modal(
       host,
       data,
@@ -2560,7 +2568,7 @@ function atcb_save_file(file, filename) {
     const save = document.createElementNS('http://www.w3.org/1999/xhtml', 'a');
     save.rel = 'noopener';
     save.href = file;
-    if (isMobile()) {
+    if (atcbIsMobile()) {
       save.target = '_self';
     } else {
       save.target = '_blank';
@@ -2626,11 +2634,11 @@ function atcb_generate_time(data, style = 'delimiters', targetCal = 'general', a
     const endDate = data.endDate.split('-');
     const newStartDate = new Date(Date.UTC(startDate[0], startDate[1] - 1, startDate[2], 12, 0, 0));
     const newEndDate = new Date(Date.UTC(endDate[0], endDate[1] - 1, endDate[2], 12, 0, 0));
-    if (targetCal === 'google' || (targetCal === 'microsoft' && !isMobile()) || targetCal === 'msteams' || targetCal === 'ical') {
+    if (targetCal === 'google' || (targetCal === 'microsoft' && !atcbIsMobile()) || targetCal === 'msteams' || targetCal === 'ical') {
       newEndDate.setDate(newEndDate.getDate() + 1);
     }
     if (targetCal === 'msteams') {
-      if (isMobile()) {
+      if (atcbIsMobile()) {
         const offset = newStartDate.getTimezoneOffset();
         const formattedOffset = (function () {
           if (offset < 0) {
@@ -2694,7 +2702,7 @@ function atcb_secure_url(url, throwError = true) {
   }
 }
 function atcb_validEmail(email) {
-  if (!/^.{0,70}@.{1,30}\.[\w.]{2,9}$/.test(email)) {
+  if (!/^.{0,70}@.{1,30}\.[a-zA-Z]{2,9}$/.test(email)) {
     return false;
   }
   return true;
@@ -2839,7 +2847,7 @@ function atcb_copy_to_clipboard(dataString) {
   tmpInput.contentEditable = true;
   tmpInput.readOnly = false;
   tmpInput.value = dataString;
-  if (isiOS()) {
+  if (atcbIsiOS()) {
     var range = document.createRange();
     range.selectNodeContents(tmpInput);
     var selection = window.getSelection();
@@ -2888,7 +2896,7 @@ function atcb_log_event(event, trigger, identifier) {
   if (parentEl) {
     parentEl.setAttribute('atcb-last-event', event + ':' + trigger);
   }
-  if (isBrowser()) {
+  if (atcbIsBrowser()) {
     atcb_push_to_data_layer(event, trigger);
   }
 }
@@ -3465,7 +3473,7 @@ let atcbInitialGlobalInit = false;
 let atcbBtnCount = 0;
 const lightModeMutationObserver = [];
 const template = `<div class="atcb-initialized" style="display:none;position:relative;width:fit-content;"></div>`;
-if (isBrowser()) {
+if (atcbIsBrowser()) {
   class AddToCalendarButton extends HTMLElement {
     constructor() {
       super();
@@ -3706,11 +3714,18 @@ function atcb_set_light_mode(shadowRoot, data) {
   shadowRoot.host.classList.add('atcb-' + hostLightMode);
 }
 function atcb_load_css(host, rootObj = null, style = '', inline = false, buttonsList = false, customCss = '') {
+  const cspnonceRegex = /[`'"()[\]{}<>\s]/;
   if (!document.getElementById('atcb-global-style')) {
     const cssGlobalContent = document.createElement('style');
     cssGlobalContent.id = 'atcb-global-style';
     const scrollBarWidth = window.innerWidth - document.documentElement.clientWidth;
     cssGlobalContent.innerText = '.atcb-modal-no-scroll { overflow-y: hidden !important; -webkit-overflow-scrolling: touch; } body.atcb-modal-no-scroll { padding-right: ' + scrollBarWidth + 'px; }';
+    if (host.host.hasAttribute('cspnonce')) {
+      if (cspnonceRegex.test(host.host.getAttribute('cspnonce'))) {
+        throw new Error("cspnonce input contains forbidden characters.");
+      }
+      cssGlobalContent.setAttribute('nonce', host.host.getAttribute('cspnonce'));
+    }
     document.head.append(cssGlobalContent);
   }
   if (customCss != '' && style == 'custom') {
@@ -3718,6 +3733,12 @@ function atcb_load_css(host, rootObj = null, style = '', inline = false, buttons
     cssFile.setAttribute('rel', 'stylesheet');
     cssFile.setAttribute('type', 'text/css');
     cssFile.setAttribute('href', customCss);
+    if (host.host.hasAttribute('cspnonce')) {
+      if (cspnonceRegex.test(host.host.getAttribute('cspnonce'))) {
+        throw new Error("cspnonce input contains forbidden characters.");
+      }
+      cssFile.setAttribute('nonce', host.host.getAttribute('cspnonce'));
+    }
     if (rootObj == null) {
       host.host.style.display = 'none';
       loadExternalCssAsynch(cssFile, host, host.host);
@@ -3731,6 +3752,12 @@ function atcb_load_css(host, rootObj = null, style = '', inline = false, buttons
   }
   if (style != 'none' && atcbCssTemplate[`${style}`] != null) {
     const cssContent = document.createElement('style');
+    if (host.host.hasAttribute('cspnonce')) {
+      if (cspnonceRegex.test(host.host.getAttribute('cspnonce'))) {
+        throw new Error("cspnonce input contains forbidden characters.");
+      }
+      cssContent.setAttribute('nonce', host.host.getAttribute('cspnonce'));
+    }
     const overrideDefaultCss = (function () {
       if (host.host.hasAttribute('styleLight')) {
         const output = ':host { ' + atcb_secure_content(host.host.getAttribute('styleLight').replace(/(\\r\\n|\\n|\\r)/g, ''), false) + ' }';
@@ -3792,7 +3819,7 @@ function atcb_render_debug_msg(host, error) {
 }
 // eslint-disable-next-line @typescript-eslint/no-unused-vars
 function atcb_action(data, triggerElement, keyboardTrigger = false) {
-  if (!isBrowser()) {
+  if (!atcbIsBrowser()) {
     return;
   }
   data = atcb_secure_content(data);
@@ -3848,7 +3875,7 @@ function atcb_action(data, triggerElement, keyboardTrigger = false) {
   atcb_log_event('initialization', data.identifier, data.identifier);
   if (!data.blockInteraction) {
     let host = null;
-    if (!oneOption || (data.options[0] !== 'apple' && data.options[0] !== 'ical') || (data.dates && data.dates.length > 1 && data.dates.organizer) || (isMobile())) {
+    if (!oneOption || (data.options[0] !== 'apple' && data.options[0] !== 'ical') || (data.dates && data.dates.length > 1 && data.dates.organizer) || (atcbIsMobile())) {
       host = document.createElement('div');
       host.id = 'atcb-customTrigger-' + data.identifier + '-host';
       if (root == document.body) {
@@ -3927,7 +3954,7 @@ function atcb_get_pro_data(licenseKey) {
   return data;
 }
 function atcb_set_global_event_listener(host, data) {
-  if (!isBrowser()) {
+  if (!atcbIsBrowser()) {
     return;
   }
   if (data.lightMode == 'bodyScheme') {

package/index.d.ts

@@ -73,6 +73,7 @@ declare module 'add-to-calendar-button' {
       rsvp?: object | string;
       bypassWebViewCheck?: boolean | string;
       debug?: boolean | string;
+      nonce?: string;
       blockInteraction?: boolean | string;
       styleLight?: string;
       styleDark?: string;