我正在尝试嵌入iframe
Origin Url可以说是mydomain.com 嵌入网址可以说是https://sub.extdomain.com
Uncaught DOMException: Blocked a frame with origin "https://sub.extdomain.com" from accessing a cross-origin frame.
我尝试基于nginx为sub.extdomain.com
添加反向代理层
然后从这里跟随代码
how to use a reverse proxy to get around X-Frame-Options: SAMEORIGIN for iframe
server {
listen 80;
server_name reversapp.com;
location / {
proxy_pass https://sub.extdomain.com
proxy_set_header Host sub.extdomain.com
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_hide_header 'x-frame-options';
}
}
问题仍然存在
想知道我们要解决此问题的所有选择。
如果sub.extdomain.com
需要允许,需要做什么?
或者,如果它在nginx反向代理中,则需要添加所有选项