Atozed Forums
IW App inside an IFRAME - Printable Version

+- Atozed Forums (https://www.atozed.com/forums)
+-- Forum: Atozed Software Products (https://www.atozed.com/forums/forum-1.html)
+--- Forum: IntraWeb (https://www.atozed.com/forums/forum-3.html)
+---- Forum: English (https://www.atozed.com/forums/forum-16.html)
+----- Forum: IntraWeb General Discussion (https://www.atozed.com/forums/forum-4.html)
+----- Thread: IW App inside an IFRAME (/thread-2499.html)



IW App inside an IFRAME - ShaneStump - 09-03-2021

Howdy All!

I have a customer trying to run my IW 15.x app inside an IFrame (which I have always said I don't OFFICIALLY support).

If I open the browser debug routines and look at the console output if my IW app is run from within an IFRAME, all my local resources in the WWWRoot folder get 404 errors. If I run the IW app outside of the IFrame, it works as expected.

Anyone else have this issue and come up with a fix?

All the best,

Shane


RE: IW App inside an IFRAME - Jose Nilton Pace - 09-03-2021

Hi Shane. I have an app running inside an iframe here: https://fidelidade.club/promocoes.html?cnpj=34427449000152
Take care of same configs in your server, like:
X-Frame-Options = DENY, maybe X-Frame-Options = ALLOW
Content-Security-Policy = frame-ancestors self HTTPS:;


RE: IW App inside an IFRAME - ShaneStump - 09-04-2021

(09-03-2021, 01:13 PM)Jose Nilton Pace Wrote: Hi Shane. I have an app running inside an iframe here: https://fidelidade.club/promocoes.html?cnpj=34427449000152
Take care of same configs in your server, like:
X-Frame-Options = DENY, maybe X-Frame-Options = ALLOW
Content-Security-Policy = frame-ancestors self HTTPS:;

(09-03-2021, 01:13 PM)Jose Nilton Pace Wrote: Hi Shane. I have an app running inside an iframe here: https://fidelidade.club/promocoes.html?cnpj=34427449000152
Take care of same configs in your server, like:
X-Frame-Options = DENY, maybe X-Frame-Options = ALLOW
Content-Security-Policy = frame-ancestors self HTTPS:;

Howdy Jose,

First thanks for the reply.

The results are the same with a stand-alone IW exe server.

Are you suggesting I look at the IFRAME sandbox options or something else?

All the best,

Shane


RE: IW App inside an IFRAME - Alexandre Machado - 09-15-2021

I've run applications in IFRAME before and never had any issues like that. It may happen that your application needs to be configured to keep the session without cookies in this particular scenario (you can also try to set CookieOptions.SameSite = ssoNone and CookieOptions.Secure = True, cause it may work)


RE: IW App inside an IFRAME - ShaneStump - 09-16-2021

(09-15-2021, 03:43 AM)Alexandre Machado Wrote: I've run applications in IFRAME before and never had any issues like that. It may happen that your application needs to be configured to keep the session without cookies in this particular scenario (you can also try to set CookieOptions.SameSite = ssoNone and CookieOptions.Secure = True, cause it may work)

Howdy Alexandre,

Thanks for the reply - I already had the CookieOptions set the way you suggested. 

I then disabled cookies and it worked but I got an 'Invalid page context' on each page... I then unchecked CheckFormId  and all seems to be working.

Thanks,

Shane


RE: IW App inside an IFRAME - StephanM - 12-04-2021

FWIW, some clients do use an iFrame for our app.
I had to set TIWServerController::CookieOptions->SameSite = ssoStrict; because of security restrictions in Chrome.