- Posts: 3
- Thank you received: 0
Welcome to the LimeSurvey Community Forum
Ask the community, share ideas, and connect with other LimeSurvey users!
Problema ao tentar exibir iframe!
- reckVCM
- Topic Author
- Offline
- New Member
Less
More
4 months 4 weeks ago #252694
by reckVCM
Problema ao tentar exibir iframe! was created by reckVCM
Boa tarde!
Guys, I'm trying to display an iframe on a form, but it doesn't work at all! When I exit the iframe it works.
In the attachment I added the error and the message is simply this:
What did I do to try to resolve it.
- I disabled XSS
- Allow iframe for origin only - I have already set the following in the server's .htaccess:
Guys, I'm trying to display an iframe on a form, but it doesn't work at all! When I exit the iframe it works.
In the attachment I added the error and the message is simply this:
What did I do to try to resolve it.
- I disabled XSS
- Allow iframe for origin only - I have already set the following in the server's .htaccess:
What do I need to do to make IFRAME work?<IfModule mod_headers.c>
Header set X-Frame-Options "ALLOW-FROM *"
</IfModule>
Attachments:
Please Log in to join the conversation.
- DenisChenu
- Offline
- LimeSurvey Community Team
Less
More
- Posts: 13648
- Thank you received: 2491
4 months 4 weeks ago #252699
by DenisChenu
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Replied by DenisChenu on topic Problema ao tentar exibir iframe!
Did you try
1. manual.limesurvey.org/Global_settings#Security
2. manual.limesurvey.org/index.php?title=Op...Validation_in_iFrame
?
1. manual.limesurvey.org/Global_settings#Security
2. manual.limesurvey.org/index.php?title=Op...Validation_in_iFrame
?
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Please Log in to join the conversation.
- reckVCM
- Topic Author
- Offline
- New Member
Less
More
- Posts: 3
- Thank you received: 0
4 months 4 weeks ago - 4 months 4 weeks ago #252708
by reckVCM
Replied by reckVCM on topic Problema ao tentar exibir iframe!
Last edit: 4 months 4 weeks ago by reckVCM.
Please Log in to join the conversation.
- DenisChenu
- Offline
- LimeSurvey Community Team
Less
More
- Posts: 13648
- Thank you received: 2491
4 months 4 weeks ago #252711
by DenisChenu
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Replied by DenisChenu on topic Problema ao tentar exibir iframe!
Read all please : csrf needed too
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Please Log in to join the conversation.
- reckVCM
- Topic Author
- Offline
- New Member
Less
More
- Posts: 3
- Thank you received: 0
4 months 4 weeks ago #252712
by reckVCM
Replied by reckVCM on topic Problema ao tentar exibir iframe!
But I already put the CSRF with the samesite and secure
Please Log in to join the conversation.
- DenisChenu
- Offline
- LimeSurvey Community Team
Less
More
- Posts: 13648
- Thank you received: 2491
4 months 4 weeks ago - 4 months 4 weeks ago #252763
by DenisChenu
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Replied by DenisChenu on topic Problema ao tentar exibir iframe!
samesite for cookieParams and
for csrfCookie
www.sondages.pro/iframe/
And Please : don't open an issue about this, LimeSurey GMBH want to delete this part from manual.
Code:
sameSite
www.sondages.pro/iframe/
Code:
'session' => array ( 'sessionName' => "SPDemo", //~ 'class' => 'application.core.web.DbHttpSession', //~ 'connectionID' => 'db', //~ 'sessionTableName' => '{{sessions}}', 'cookieParams' => array( 'secure' => true, 'httponly' => true, 'samesite' => 'None', ), ), 'request' => array( 'enableCsrfValidation'=>true, 'csrfCookie' => array( 'sameSite' => 'None', 'secure' => true, ), ),
And Please : don't open an issue about this, LimeSurey GMBH want to delete this part from manual.
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Last edit: 4 months 4 weeks ago by DenisChenu.
Please Log in to join the conversation.
- DenisChenu
- Offline
- LimeSurvey Community Team
Less
More
- Posts: 13648
- Thank you received: 2491
4 months 4 weeks ago #252766
by DenisChenu
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Replied by DenisChenu on topic Problema ao tentar exibir iframe!
You need php7.4 and up too
github.com/LimeSurvey/LimeSurvey/blob/d7.../CHttpCookie.php#L85
github.com/LimeSurvey/LimeSurvey/blob/d7...HttpSession.php#L256
github.com/LimeSurvey/LimeSurvey/blob/d7...ttpRequest.php#L1579
github.com/LimeSurvey/LimeSurvey/blob/d7.../CHttpCookie.php#L85
github.com/LimeSurvey/LimeSurvey/blob/d7...HttpSession.php#L256
github.com/LimeSurvey/LimeSurvey/blob/d7...ttpRequest.php#L1579
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand , plugin development .
I don't answer to private message.
Please Log in to join the conversation.