1CONSOLE ERROR: line 2: Blocked a frame with origin "http://localhost:8080" from accessing a frame with origin "http://127.0.0.1:8000". Protocols, domains, and ports must match.
1CONSOLE ERROR: line 2: Unsafe JavaScript attempt to initiate navigation for frame with URL 'http://127.0.0.1:8000/security/xss-DENIED-window-open-parent.html' from frame with URL 'http://localhost:8080/security/resources/xss-DENIED-window-open-parent-attacker.html'. The frame attempting navigation is targeting its top-level window, but is neither same-origin with its target nor is it processing a user gesture. See https://www.chromestatus.com/features/5851021045661696.
Issue 2092293002: Block framebusts without a user gesture
(Closed)
Created 4 years, 5 months ago by Nate Chapin
Modified 4 years, 3 months ago
Reviewers: jochen (gone - plz use gerrit), Mike West, ojan
Base URL: https://chromium.googlesource.com/chromium/src.git@master
Comments: 3
Chromium Code Reviews
Issue 2092293002:
Block framebusts without a user gesture (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master