2016
2014
RFC 7034 - HTTP Header Field X-Frame-Options
by dzc
To improve the protection of web applications against clickjacking,
this document describes the X-Frame-Options HTTP header field, which
declares a policy, communicated from the server to the client
browser, regarding whether the browser may display the transmitted
content in frames that are part of other web pages.
How to Embed YouTube Videos without Increasing Page Load Time
by dzc (via)
Instead of embedding the full Youtube video player, Google+ only displays the thumbnail of a YouTube video and then overlays a play icon over the video so the image resembles a video player.
easyXDM - Cross-domain messaging made easy
by srcmax
easyXDM is a Javascript library that enables you as a developer to easily work around the limitation set in place by the Same Origin Policy, in turn making it easy to communicate and expose javascript API’s across domain boundaries.
Porthole by ternarylabs
by srcmax
Porthole is a small Javascript library that makes it safe and easy to communicate with cross domain iFrames. Porthole relies on hidden iFrames (later referred to a as proxy) to exchange information. The caller sets a url fragment with the message to pass. The proxy by virtue of being served from the same origin as the callee, invokes a callback method with an event object that contains the message read from the url fragment. The message signaling mechanism is based on a resize event.
Iframe-resizer by davidjbradshaw
by srcmax
Size cross domain iFrames to content with support for window/content resizing, and multiple iFrames.
2011
2010
2009
Faut-il avoir peur du « clickjacking » ?
by nhoizey
« les [...] iFrames peuvent être ouvertes avec de simples feuilles de style CSS » ??? Va falloir qu'on m'explique...
2008
Incorporer un Gadget Google dans le corps du message (Blog)
by prac53
Incorporer un Gadget Google dans le corps du message (Blog). Blogger ne donne pas d'outils pour insérer un Gadget Google dans le corps du message.
Comment trouver le code du iframe du gadget
