Block popup from iframe without using sandbox - javascript

For personal use, I want to block popup coming from 3rd part iframe website. I tried to use sandbox but if it's working for some, most of embedded websites block the video when the iframe is sandboxed.
Is there an alternative way ? I can't use browser extension.
With sandbox (the embedded websites block the read)
<iframe src="https://doodstream.com/e/ouwwyxd8yu4u" sandbox = "allow-forms allow-pointer-lock allow-same-origin allow-scripts allow-top-navigation" allowfullscreen="true"></iframe>
The embedded website checks if I use sandbox so I can't use sandbox to block "popup".
Without sandbox, too many popups from the embedded websites.
<iframe src="https://doodstream.com/e/ouwwyxd8yu4u" allowfullscreen="true"></iframe>

Related

how to close iframe if iframe page src redirects to specific url

i am using a simple iframe html code where i am embedding the jitsi meet url. now the problem is after finishing a meeting with jitsi it redirects to its close3.html page. i dont want to show this in my iframe. i want to close my iframe when it redirects to close3.html page. i have tried with sandbox. but after using sandbox camera and microphone access turns disable.
here is my iframe code
<iframe
title="Open identification process"
src="https://meet.jit.si/4b7562c798c20e3dd523b2298cad5327"
frameBorder="0"
width="600"
height="800"
allow="camera; microphone"
id="iframe"
onLoad="alert('Test');"
/>
You will face the Same Origin Policy when you try to do.
You can't access an <iframe> with different origin using JavaScript,
it would be a huge security flaw if you could do it.
Even so, you could use that method:
document.getElementById("iframe_id").contentWindow.location.href
Further Information

It is possible to navigate through an external website or web application using an HTML iframe?

I am currently working on a PaaS (platform as a service) where frontend can be developed using html5 (yes, I am limited to using vanilla js)
I must show within an html document an external web application that belongs to me, either using iframe or some other alternative and guarantee that this external app is fully functional while being embedded within the page.
The problem I am currently having is that with "iframe" or with alternatives such as "embed" or "object" you cannot navigate beyond the page that is brought up through the url, for example you cannot exit the page login embedded in an iframe, when I try to login the page in the iframe it just restarts.
here some examples:
<iframe src="url_to_myapp" width="100%" height="500" frameborder="0"
allowfullscreen>
<embed src="url_to_myapp" quality="medium" bgcolor="#ffffff" width="550" height="400" name="whoosh" align="middle"
allowScriptAccess="sameDomain" allowFullScreen="true">
Is it possible to navigate between different pages of the same website or through the internet using an iframe? If not, is there an alternative in html5 where it is possible to show an embedded page inside another and navigate through it?
thank you, greetings

Iframe isn't visible on Chrome browser

I have an iframe issue with the Chrome browser. In http://bulbanner.cf has the following iframe code:
<iframe src="http://bulbanner.cf/script.html" width=468 height=60 marginwidth=0 marginheight=0 hspace=0 vspace=0 frameborder=0 scrolling="no" title="BulBanner - banner exchange"></iframe>
When you paste the code in another website, 468x60 sized banners are starting to visualize, because in the http://bulbanner.cf/script.html page has a rotator which shows random 468x60 sized banners. Shortly, something like this:
With Firefox everything is fine, but with Chrome very often the iframe doesn't work. Look the result with Chrome:
I think this is a security issue from Chrome browser, however is there any way to resolve it?
I have rights to change the iframe code or I can put some code in the http://bulbanner.cf/script.html page which is visualizing via the above mentioned iframe.
In this case the X-Frame-Origin header is generated by Google’s support page. So you can’t change that.
The website you want to make an iFrame has a .htaccess code that blocks iFrame request.
Like if you insert this code Header set X-Frame-Options DENY to your website’s .htaccess then any iFrame requests will be blocked.

How to use "hidden" Sandbox in iframe?

I have this code:
<iframe sandbox="allow-scripts allow-same-origin"
src="//sportsbay.org/embed/72691/1/fc-juarez-vs-chivas-guadalajara-live.html"
width="100%" height="100%" frameborder="0"></iframe>
If I use it without: sandbox="allow-scripts allow-same-origin" it works well.
But when I add the sandbox code it says: "Sandboxing is not allowed"
Is it possible to somehow force to use sandbox without getting that error?
No.
The site has code which detects it is sandboxed and refuses to display the content when it is.
Presumably, this is because they use features you are blocking in order to make money on their (looks at the name of the site) presumably copyright-infringing content.

Unable to play openload videos under Iframe Sandbox allow script

Unable to play openload videos under Iframe Sandbox allow script
My Code :
<iframe sandbox="allow-scripts" scrolling="no"
src="https://oload.stream/embed/kxDLfFZqpX0"></iframe>
Yeah, they've put a mechanism against it.
sandbox="allow-scripts" would block their ads :)

Categories