StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

POHow can I bypass the same-origin policy of an iframe for Chrome extensions?
primarykey
Id
12751135
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
2012-10-06T04:25:25.453
CommentCount
2
CommunityOwnedDate
CreationDate
2012-10-05T17:22:39.583
FavoriteCount
0
LastActivityDate
2012-10-07T15:07:24.893
LastEditDate
2017-05-23T12:18:49.800
LastEditorUserId
-1
OwnerUserId
1698152
ParentId
0
PostTypeId
1
Score
0
ViewCount
194
LastEditorDisplayName
text
Body
<blockquote> Possible Duplicate: <a href="https://stackoverflow.com/questions/11325415/access-iframe-content-from-a-chromes-extension-content-script">access iframe content from a chrome's extension content script</a> </blockquote> I'm trying to manipulate part of an iframe on a webpage via a Chrome extension. Everytime I do, I get a "Unsafe JavaScript attempt to access frame with URL" error. <a href="http://developer.chrome.com/extensions/xhr.html#requesting-permission" rel="nofollow noreferrer">Reading the Chrome extension documentation, it appears I should be able to ask for permissions</a> to do this in my manifest.json. But nothing I've done seems to allow me to do this. My manifest.json: <pre><code>{ "name": "Manipulate an iframe", "description": "Test to manipulate an iframe", "version": "1.0", "background": { "scripts": ["background.js"] }, "permissions": [ "tabs", "http://*/", "https://*/", "<all_urls>" ], "browser_action": { "name": "Modify iframe", "icons": ["icon.png"] }, "manifest_version": 2 } </code></pre> My background.js: <pre><code>chrome.browserAction.onClicked.addListener(function(tab) { chrome.tabs.executeScript(null, { allFrames:true, runAt:"document_end", file: "jquery-latest.min.js" }, function() { chrome.tabs.executeScript(null, { allFrames:true, runAt:"document_end", file: "content-script.js" }); }); }); </code></pre> My content-script.js: <pre><code>$('.container').css('width','98%'); $('#myPage iframe').contents().find('#code').unwrap() </code></pre> The container is resized correctly when I click the extension button, but I can't touch the iframe. It seems to me that I've given all the permissions I can, so is there somewhere else I need to specify permissions? Edit : I found this answer to be helpful in understanding the different types of scripts in a Chrome extension: <a href="https://stackoverflow.com/a/9916089/1698152">https://stackoverflow.com/a/9916089/1698152</a> The flagged duplicate answer: <a href="https://stackoverflow.com/questions/11325415/access-iframe-content-from-a-chromes-extension-content-script">access iframe content from a chrome's extension content script</a> was sufficient to answer my question. Instead of trying to inject into all frames via tabs.executeScript, I injected content scripts into all frames by defining them in the manifest. I was then able to call functions in these scripts from the background page script via message passing. I still don't understand why this is any different from what I was already doing, however.
Tags
<jquery><iframe><google-chrome-extension><cross-domain><same-origin-policy>
Title
How can I bypass the same-origin policy of an iframe for Chrome extensions?
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. This table or related slice is empty.
PostTypePostTypeId
1. PTQuestion
UserLastEditorUserId
1. USCommunity
UserOwnerUserId
1. USbmurr
plurals
PostLinksPostIdRelatedPostId
1. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
2. PL
 singulars
 LinkTypeLinkTypeId
 LTLinked
3. PL
 singulars
 LinkTypeLinkTypeId
 LTDuplicate
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 POHow can I bypass the same-origin policy of an iframe for Chrome extensions?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTClose
2. VO
 singulars
 PostPostId
 POHow can I bypass the same-origin policy of an iframe for Chrome extensions?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTClose
3. VO
 singulars
 PostPostId
 POHow can I bypass the same-origin policy of an iframe for Chrome extensions?
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTClose
CommentsPostId
1. COThose permissions give you the ability to make cross domain ajax requests. I do not believe that it gives you cross frame scripting permissions. The iframe must be serving content on the same domain as your page. https://developer.mozilla.org/en-US/docs/HTML/Element/iframe#Scripting
 singulars
 PostPostId
 POHow can I bypass the same-origin policy of an iframe for Chrome extensions?
 UserUserId
 USAdam
2. CO@Adam Surely I am able to do this somehow. Perhaps I should be trying to do this through the Chrome API instead?
 singulars
 PostPostId
 POHow can I bypass the same-origin policy of an iframe for Chrome extensions?
 UserUserId
 USbmurr

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.