Arrow Home arrow Forums
larger font smaller font default font Fixed screen resolution Auto adjust screen size

Joomlapolis Forums  


Boardwalk :: Forum List CB 1.2.2 CB 1.2.2 General Discussion
Iframe warning issue
Date: 2010/04/12 12:22 By: udjamaflip Status: User  
Karma: 0  
Fresh Joomlapolitan

Posts: 1
graphgraph
Hi guys,

I'm not a CB user myself as I've never had a need, however, there is a lot of people who want to use my administrator template that use CB who are unable to due to a "security feature" where iframes are not allowed and gives this error: "Iframes not allowed, could be hack attempt..., sorry!"

Is there anyway the CB dev team could take into account the host of the parent page before blocking the page from being displayed within an iframe? The link to the latest version of the admin template is below. I would like CB users to have the freedom to use the template, but apart from me patching your code (which isn't the best way to go, as it would probably break on updates) my hands are tied.

http://udjamaflip.com/joomla-jquery-template/56-free-joomla-admin-template.html

Any advice on the issue would be appreciated. I am trying to get this template in Joomla core build for 1.7 but without CB's cooperation this won't happen due to unusability.
Click here to see the profile of this user The administrator has disabled public write access.

Re:Iframe warning issue
Date: 2010/04/12 13:39 By: beat Status: Admin  
Karma: 294  
Admin

Posts: 5992
graphgraph
The javascript code for that is in admin.comprofiler.html.php lines 21-23.

If you have a secure alternative code suggestion, which works and is tested in all current browsers (FF, safari, opera, ie7 included for backend access), contributions are welcome in here

The reason to jump the admin area out of any iframe is that it is an added security measure against sophisticated XSS attacks.

You have a very cool template btw. Didn't think of that issue when i saw it.
Beat (beat)
Community Builder Team Member

Before posting on forums: Read all CB Articles | Specially the FAQ | Help us help you
CB links: Subscribe to CB documentation | Our templates | Paid Subscriptions | Get Hosting | Our Forge
Visit my CB Profile | Read my CB Blog

--
help us spend more time coding by helping others in this forum, many thanks
Click here to see the profile of this user The administrator has disabled public write access.

Boardwalk :: Forum List CB 1.2.2 CB 1.2.2 General Discussion

Joomlaboard Forum Component 1.1.3 Stable
Two Shoes M-Factory

CBSubs 1.0

CBSubs 1.0.3 released!

Find out more about the revolutionary new Joomla subscription system:

Info on CBSubs

CB 1.2.3 Documentation

Thank you bonus:

ProfileBook (+Blog) 1.2RC
ProfileGallery 1.2RC2
CB Privacy 1.0RC

What? Why? Where?

Click here for a yearly subscription: subscribe now

CB 1.2.3 Download

Community Builder 1.2.3
Stable and native for:
Joomla 1.5 & 1.0 & Mambo
(incl. CB 1.2.3 Installation pdf)
You need to be a registered member to download.

Full 180 pages updated
CB 1.2.3 documentation:
You need to be a CB doc subscriber to download.

CB Login