javascript - Chrome Extension content script on iframe without src attribute -


i have content script injecting iframe page's dom. iframe not have src attribute, creating dynamically it's content's like...

iframe.src = 'data:text/html;charset=utf-8,' + encodeuri(html);

how can run content script on iframe? or communicate background? need trigger "close iframe" event code. know possible because honey doing this.

https://chrome.google.com/webstore/detail/honey/bmnlcjabgnpnenekpadlanbbkooimhnj?hl=en-us

you cannot run content script in frame @ data:-url (crbug.com/55084).

there alternatives though:

  1. in page embeds frame, use onmessage event subscribe events iframe, , insert script in data-url frame calls parent.postmessage.

    // content script in parent frame. // assuming variable iframe exists, , iframe. window.addeventlistener('message', onmessage); function onmessage(event) {     if (event.source === iframe && event.message === 'close') {         window.removeeventlistener('message', onmessage); // clean-up         iframe.remove();     } }  // in iframe parent.postmessage('close');

  2. use .srcdoc instead of .src+data urls load html in iframe:

    iframe.srcdoc = html;

    the html @ same origin parent document, content within frame can use frameelement.remove(); remove frame (example). since script can directly access parent page, html insert must trustworthy. not insert arbitrary html untrusted sites!

  3. declare extension page in web_accessible_resources, , load extension page in frame. can use extension messaging apis communicate between frame , background of extension. unlike previous methods, code in page runs in origin of extension, have access chrome apis (including extension messaging or chrome.storage) , origin-specific data (such localstorage).

    iframe.src = chrome.runtime.geturl('name_of_your_page.html');

-

Comments

Post a Comment

Popular posts from this blog

OpenCV OpenCL: Convert Mat to Bitmap in JNI Layer for Android -

there several posts converting mat bitmap using utils.mattobitmap() function. i'm assuming function can called in java layer after importing utils class. i want transfer data memory address pointed uint32_t* bmpcontent; in code below. jniexport void jnicall java_com_nod_nodcv_nodcvactivity_runfilter( jnienv *env, jclass clazz, jobject outbmp, jbytearray indata, jint width, jint height, jint choice, jint filter) { int outsz = width*height; int insz = outsz + outsz/2; androidbitmapinfo bmpinfo; if (androidbitmap_getinfo(env, outbmp, &bmpinfo) < 0) { throwjavaexception(env,"gaussianblur","error retrieving bitmap meta data"); return; } if (bmpinfo.format != android_bitmap_format_rgba_8888) { throwjavaexception(env,"gaussianblur","expecting rgba_8888 format"); return; } uint32_t* bmpcontent; if (androidbitmap_lockpixels(env, outbmp,(void**)&bmpcontent)...
Read more

android - org.xmlpull.v1.XmlPullParserException: expected: START_TAG {http://schemas.xmlsoap.org/soap/envelope/}Envelope -

i trying hit soap api in application login purpose , getting above mentioned error , can 1 tell me going wrong , first time soap apis. here code hit soap :- vector<object> args = new vector<object>(); hashtable<string, object> hashtable = new hashtable<string, object>(); hashtable.put("email", "mss.siddhart28@gmail.com"); hashtable.put("password", "siddharth"); args.add(hashtable); soapserializationenvelope envelope = new soapserializationenvelope( soapenvelope.ver11); envelope.dotnet = true; envelope.xsd = soapserializationenvelope.xsd; envelope.enc = soapserializationenvelope.enc; (new marshalhashtable()).register(envelope); httptransportse androidhttptransport = new httptransportse( "http://tempuri.org/", 15000); androidhttptransport.debug = true; string result = ""; try { soapobject request = new soapobject("http:...
Read more

python - How to remove the Xframe Options header in django? -

i have made page has iframe . inside iframe want show multiple different links article facebook, or news, or youtube video or other possible url. but, due xframe header, unable so. referred following link: https://docs.djangoproject.com/en/1.8/ref/clickjacking/ , django xframeoptionsmiddleware (x-frame-options) - allow iframe client ip but didn't help. my settings.py file's middleware_classes is: middleware_classes = ( 'django.contrib.sessions.middleware.sessionmiddleware', 'django.middleware.common.commonmiddleware', 'django.middleware.csrf.csrfviewmiddleware', 'django.contrib.auth.middleware.authenticationmiddleware', 'django.contrib.auth.middleware.sessionauthenticationmiddleware', 'django.contrib.messages.middleware.messagemiddleware', 'django.middleware.clickjacking.xframeoptionsmiddleware', ) from http://django-secure.readthedocs.org/en/latest/middleware.html , found using ...
Read more