Mescalito
Reputation: 2068
javascript permission/access denied accessing parent non-ssl attributes from an ssl iframe
I understand that to access the parent properties of an iframe it has to be the same domain/scheme/ports, but being this only an ssl/non-ssl issue, is there any workaround?
Upvotes: 0
Views: 368
Answers (1)
Quentin
Reputation: 943100
No. SSL/non-SSL means a different scheme and a different port.
Worse, if you could do this, then all an attacker has to do is inject some code into the non-SSL page, and that could access the SSL data, rendering it insecure.
Upvotes: 1
Related Questions
- SecurityError: Permission denied to access property "document" on cross-origin object when acces info of a iFrame
- "Access is denied" error on accessing iframe document object
- Permission denied when implementing JavaScript within an iframe from the parent page
- Can't access content of iFrame because of Cross domain restriction
- Cross-domain JavaScript iFrame-parent access blocked
- access http within iframe from https parent window
- Getting parent value in an iframe gives permission denied?
- javascript, iframe, security - Permission denied when tring to access a js function from parent window
- Access child iFrame DOM from parent page
- javascript - Can not access cross domain parent element inside my iframe