• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Devaka Cooray
  • Knute Snortum
  • Paul Clapham
  • Tim Cooke
Sheriffs:
  • Liutauras Vilda
  • Jeanne Boyarsky
  • Bear Bibeault
Saloon Keepers:
  • Tim Moores
  • Stephan van Hulst
  • Ron McLeod
  • Piet Souris
  • Frits Walraven
Bartenders:
  • Ganesh Patekar
  • Tim Holloway
  • salvin francis

Problem in Include a url in IE "Access denied"  RSS feed

 
Greenhorn
Posts: 24
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Hello All,

I am including a page(url) in iframe in a jsp but I am getting access denied error in IE 9. However for the same , its working in chrome.

The url I have is of a 3rd party website which I need to include in iframe in my jsp page , the url has query parameters of username and password provided by me dynamically. Using these username and password , the 3rd party website makes the user login . After logging in the eventual landing page is expected to get displayed in iframe .

I want to achieve this in IE only but its failing in IE only and working for other of the browsers like chrome , firefox.

Can any one please suggest me a way to achieve this or whats wrong in the method above ?

Thanks.
P.S. I have tried including the url in Object tag instead of iframe but the behaviour is same as above i.e. its working in chrome but not in ie.
Later I tried including another jsp as a source of iframe. in this jsp , on load I ran a dynamic form creation and submission to the url , but no luck.
 
author
Posts: 297
5
Android Fedora Firefox Browser
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
What is the 3rd party website setting the value of the X-Frame-Options header to?
 
Aniruddha Jadhao
Greenhorn
Posts: 24
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Would the value of this option matter? Because the options i.e. SAMEORIGION or ALLOW FROM ,I guess , will not work in my case. The reasons are
1) my website and 3rd party website is on different domain
2) The 3rd party website I am accessing is deployed individualy for differnt ips that I will be passing while constructing the url. I construct the url dymanically with three parameters IP,username,Password.
Please share your thoughts on same or any alternative solution for the same.
 
author
Posts: 15385
6
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
How are you setting the iframe?
 
Rob Crowther
author
Posts: 297
5
Android Fedora Firefox Browser
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator

Aniruddha Jadhao wrote:Would the value of this option matter?



Since some of the options are only supported in IE among released browsers, and IE is the only browser you have a problem in, I'm guessing that yes it does.
 
Aniruddha Jadhao
Greenhorn
Posts: 24
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I am setting iframe in a HTML div in my jsp.

Here is the snippet of the code . I am using jquery javascript framework.

$("#config-info")[0].innerHTML="<iframe name='ani' id='ani' height='800px' width='800px' src='https://x.x.x.x/a.php/?Login=abcd&Password=efgh' />";

I just wonder when I run this code in Google chrome , its runs perfectly , only in IE this problem occurs.
 
Aniruddha Jadhao
Greenhorn
Posts: 24
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Even though we got to know the values of X-FRAME-OPTIONS set in 3rd party website , will it be possible to include/embed the url in iframe in of jsp. I read that X-FRAME-OPTIONS have only two options
i.e. DENY /SAMEORIGION . Two websites are on two different domains so SAMEORIGION will also not work , I believe?
 
Aniruddha Jadhao
Greenhorn
Posts: 24
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I have tried to use <object in place of iframe but same result >
 
Aniruddha Jadhao
Greenhorn
Posts: 24
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
The third party url is a https website and its security certificate is expired , would it be the cause for "Access denied" error?
error.jpg
[Thumbnail for error.jpg]
Access denied error
 
Trust God, but always tether your camel... to this tiny ad.
ScroogeXHTML - small and flexible RTF to HTML converter library
https://coderanch.com/t/710903/ScroogeXHTML-RTF-HTML-XHTML-converter
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!