Welcome to OGeek Q&A Community for programmer and developer-Open, Learning and Share
Welcome To Ask or Share your Answers For Others

Categories

0 votes
426 views
in Technique[技术] by (71.8m points)

SecurityError: Permission denied to access property on cross-origin object laravel/javascript

I have a laravel app. i have two urls

Route::get('/', function () {
    return view('welcome');
});

Route::get('/pdf', function () {
    $headers = [
        'Access-Control-Allow-Origin' => 'http://cms.test'
    ];
    return response()->file('test.pdf', $headers);
});

inside welcome i have added an iframe

<iframe src="{{ url('pdf') }}" width="100%" height="80%" id="test_frame" ></iframe>

now when i do

window.frames["test_frame"].contentWindow

it gives Restricted http://cms.test/pdf:Object

and when i try to access any property on the contentWindow i get

SecurityError: Permission denied to access property "getSelections" on cross-origin object

i have tried package "barryvdh/laravel-cors": "^0.11.2",

please help. I don't know how am I having different origins?

Edited: I now know that the document.URL of iframe is "about:blank"

See Question&Answers more detail:os

与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
Welcome To Ask or Share your Answers For Others

1 Reply

0 votes
by (71.8m points)
Waitting for answers

与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…
OGeek|极客中国-欢迎来到极客的世界,一个免费开放的程序员编程交流平台!开放,进步,分享!让技术改变生活,让极客改变未来! Welcome to OGeek Q&A Community for programmer and developer-Open, Learning and Share
Click Here to Ask a Question

...