Page 1 of 1

dynamically created iframe security

PostPosted: Thu Apr 12, 2007 5:47 pm
by Daryl

I spent the better part of today banging my head against the wall trying to figure out why the calendar widget was causing "nonsecure item" notifications in IE6. (over an SSL connection)

Eventually I tracked it down to the iframe src="about:blank" section.

Doing some research there appears to be a number of ways to get around this. Including adding a blank html page to the server to use as the src. However I have found that the following works well:


This works well in IE6 and FF. I'd have to do a bit more testing for compatibility though. This might be a better alternative to the previous method.