科技改变生活-雨落星辰 - 所有的伟大,都源于一个勇敢的开始

    最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客
    你的位置: 首页>programmer>javascript - Unable to load iframe in sandbox environment - Stack Overflow

    javascript - Unable to load iframe in sandbox environment - Stack Overflow

    programmeradmin2浏览0评论

    I am trying to load iframe with sandbox enabled in my webpage but it is showing error:

    An error occured while loading the pad Uncaught SecurityError: Failed to set the 'domain' property on 'Document': Assignment is forbidden for sandboxed iframes.

    The code for embedding iframe is:

    <iframe 
    id="iframe1" 
    name="iframe1" 
    src="http://localhost:9002/p/6dN6dkWRmd" 
    height="700px" width="500px" 
    sandbox="allow-scripts allow-top-navigation">
</iframe>

    In the iframe javascript i found that this code is throwing error:

    if ((!browser.msie) && (!(browser.mozilla && browser.version.indexOf("1.8.") == 0))) { document.domain = document.domain; // for et }

    Can someone please explain what this document.domain is doing and what should I do to run this iframe in sandbox environment?

    Note: Without sandbox it is working fine.

    I am trying to load iframe with sandbox enabled in my webpage but it is showing error:

    An error occured while loading the pad Uncaught SecurityError: Failed to set the 'domain' property on 'Document': Assignment is forbidden for sandboxed iframes.

    The code for embedding iframe is:

    <iframe 
    id="iframe1" 
    name="iframe1" 
    src="http://localhost:9002/p/6dN6dkWRmd" 
    height="700px" width="500px" 
    sandbox="allow-scripts allow-top-navigation">
</iframe>

    In the iframe javascript i found that this code is throwing error:

    if ((!browser.msie) && (!(browser.mozilla && browser.version.indexOf("1.8.") == 0))) { document.domain = document.domain; // for et }

    Can someone please explain what this document.domain is doing and what should I do to run this iframe in sandbox environment?

    Note: Without sandbox it is working fine.

    • javascript
    • jquery
    • iframe
    • etherpad
    Share Improve this question edited Jun 22, 2019 at 20:55 Towkir 4,0142 gold badges26 silver badges42 bronze badges asked Dec 20, 2015 at 7:58 Shobhit_GeekShobhit_Geek 59711 silver badges22 bronze badges 1
    • stackoverflow./questions/1481251/… – A. Wolff Commented Dec 20, 2015 at 10:42
    Add a ment  | 

    2 Answers 2

    Reset to default 0

    I expect the problem is that you iframe is on localhost, try using another domain, even if it is just pointing back to your local machine.

    From "Document.domain - Web APIs | MDN"

    Note that setting document.domain to its current value is not a no-op. It still changes the origin. For example, if one page sets
          document.domain = document.domain;
then it will be counted as cross-origin from any other normally-same-origin pages that have not done the same thing.

    This should let the iframe page be treated as cross domain even if they are on the same domain.

    Check CORS (cross origin) and CSRF (cross site request forgery).

    与本文相关的文章

    发布评论

    评论列表(0)

    1. 暂无评论