Skip to main content
Open

Feature request: Allow fullscreen, clipboard-write and downloads for trusted iframe embeds

  • February 27, 2026
  • 2 replies
  • 30 views
R

Hello Miro Team,

We are embedding our internal web application inside a Miro board using the Miro embed feature.

Our application works correctly when embedded in a standard iframe like this:

<iframe
src="https://myapp.com/..."
allow="fullscreen; clipboard-write"
style="width:100%;height:100%;border:none;">
</iframe>

In this configuration:

  • Fullscreen API works

  • Clipboard copy works (navigator.clipboard.write)

  • PNG download works via <a download> (Blob URL)

However, when embedded via Miro’s embed feature, the generated iframe looks like this:

<iframe
src="https://myapp.com/..."
sandbox="allow-same-origin allow-scripts allow-forms allow-popups allow-popups-to-escape-sandbox allow-modals allow-storage-access-by-user-activation"
allow="encrypted-media">
</iframe>

In this configuration:

  • Fullscreen is blocked

  • Clipboard API is blocked (Permissions Policy violation)

  • Standard downloads (<a download>) are blocked due to sandbox restrictions

We understand and respect the security reasons behind restrictive sandbox and permissions policies for embeds.

However, in our case:

  • The embedded application is fully controlled by us.

  • It is hosted on a trusted domain.

  • The intended usage is interactive, not read-only viewing.

Request

Would it be possible to support one of the following options:

  1. Allow additional permissions for embeds:

    • allow="fullscreen; clipboard-write"

    • sandbox including allow-downloads

  2. Provide embed configuration options (checkboxes/toggles) to enable:

    • Fullscreen

    • Clipboard write

    • Downloads

  3. Provide a “Trusted Domain Allowlist” feature,
    where specific domains can be granted expanded iframe permissions.

We are not requesting unrestricted access, but rather a secure and controlled way to enable interactive applications inside Miro boards.

This would significantly improve integration use cases where embedded tools are meant to be actively used, not just viewed.

Thank you for considering this request.

Best regards,

2 replies

Eca
Mironeer
Forum|alt.badge.img+2
  • Eca
  • Mironeer
  • February 27, 2026

Hi ​@Ryotaro Tsuda 

Thanks so much for taking the time to submit this Wish List idea. Our team will review this and it’s open for votes and comments. 

For those coming across this idea, if you feel this would be helpful for you or your business, please be sure to vote for it and leave a comment about your use case to help our team scope this request!

Thank you again for helping make Miro better!

Eca :)
    R
    • Ryotaro Tsuda
    • Author
    • New Here
    • February 27, 2026

    Hi ​@Eca 

    Thanks for reviewing this!

    To provide a bit more context on our use case:

    We are using Miro as a collaborative workspace where teams interact with embedded analytical tools (not just view them). Our application provides data visualization components that users need to:

    • enter fullscreen to focus on analysis
    • copy values or configuration via clipboard
    • download generated charts for reporting

    Currently, the sandbox and permissions policy restrictions prevent these interactive workflows, which makes the embed effectively read-only.

    Even enabling this capability for trusted domains or configurable embeds would unlock strong “interactive tool inside Miro” scenarios for teams working with dashboards, design systems, and AI-assisted tools.

    We believe this would expand Miro’s role from a visual collaboration space into a platform for interactive tools and data-driven workflows.

    Happy to provide more details or examples if helpful!

    Join the Miro MCP Challenge!

    Terms & ConditionsAccessibility statement