Reputation: 8895
Browser won't let the iframe do the redirect?
Google Chrome 23 and Firefox 18 is driving me nut.
I have a page, in which i have an iframe.
When a button click, I want the iframe to open http://images.google.com
The problem is the iframe will try to visit http://images.google.com, but as soon as it get a redirect instruction (which http://images.google.com is issueing), it halt and the page won't be rendered. Why is that? Any solution?
Here is a snippet demonstrate that issue:
<iframe id="panel" style="height: 800px; width: 100%" sandbox="allow-scripts" src="http://images.google.com">
</iframe>
Upvotes: 4
Views: 20112
Answers (1)
Reputation: 26474
It is a browser security issue, known as Click-jacking prevention, part of which is to check for a HTTP response header, X-Frame-Options. This header can take the values DENY, SAMEORIGIN, or ALLOW-FROM origin, which will prevent any framing, prevent framing by external sites, or allow framing only by the specified site, respectively.
Simply put, when this http header is there, it prevents the site from rendering in a <frame> or an <iframe>. Since 2009 this http header is implemented in most browsers including IE8+, Safari, Firefox, Chrome, and Opera.
Here are the headers from images.google.com, SAMEORIGIN means that the address could only be rendered inside an iframe when it is being surfed through google.com
Upvotes: 6
Related Questions
- Iframe redirects to the source address
- Google Chrome blocked redirect with window.top.location in iframe
- Page Redirect Not Working
- Automatic redirect issue in iframe
- Serverside redirect from iframe not working in Firefox and Chrome but works in IE6
- Parent redirect when using iframe
- Stop Iframe page from redirecting
- Redirect webpage to link in Iframe
- Redirecting inside iframe using Javascript?
- Iframe Redirection