My OperaThe My Opera forums have been replaced with forums.opera.com. Please head over there to discuss Opera's products and features
See the new ForumsYou need to be logged in to post in the forums. If you do not have an account, please sign up first.
Javascript Security Problems in 11.52.1100
I tried searching the forum for an answer on this but the Opera Forum website keeps throwing exceptions - Guru Meditations - cute Amiga reference
Prior to 11.52.1100, we were able to use an iframe within the same secure domain and access the top javascript variable. Since 11.52, we now get undefined.
Example
Master Page - https://mysite/mypage
IFrame Page - https://mysite/iframepage
IFrame page has some javascript that accesses the 'top' variable to access the Master Page and perform javascript operations.
My understanding is that this should be permitted. It tests okay in every other browser and previous versions of Opera. But not 11.52.1100.
Was this changed intentionally for some obscure security reason? Or is there a bug in the build?
Any thoughts appreciated!
Regards, Grant.
I tried:
in the framed page in 11.52 and 12.x and it alerts the innerHTML of the parent's body.
Could you just show full markup examples of both the parent and framed page of a demo that reproduces the problem?
window.addEventListener("DOMContentLoaded", function() {
alert(top.document.body.innerHTML);
}, false);
in the framed page in 11.52 and 12.x and it alerts the innerHTML of the parent's body.
Could you just show full markup examples of both the parent and framed page of a demo that reproduces the problem?
Also, note that if you want the web development forum, it's at <http://dev.opera.com/forums/forum/3590>.