mirrors/electron
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

📝 Notice on sandbox attribute.

Browse source
This commit is contained in:
Cheng Zhao 2014-03-04 21:34:14 +08:00
parent 77253abbd7
commit e3d67a304f
1 changed files with 8 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
docs/api/browser/browser-window.md
View file

@ -66,6 +66,14 @@ An example of enable node integration in iframe with `node-integration` set to
<iframe src="http://jandan.net"></iframe> <iframe src="http://jandan.net"></iframe>
``` ```
And you should also notice that the iframes can have access to parent window's
javascript objects via `window.parent`, so in order to grant complete security
from iframes, you should add `sandbox` attribute to the iframes:
```html
<iframe sandbox="allow-scripts" src="http://bbs.seu.edu.cn"></iframe>
```
### Event: 'page-title-updated' ### Event: 'page-title-updated'
* `event` Event * `event` Event