More information about the Underscore mailing list

[_] JS: Identify iframe source after redirect

Tim Wintle timwintle at gmail.com
Tue Nov 11 23:40:57 GMT 2008

> Does anyone know if there is a way to identify the URL of an iframe once
> it's redirected to an external URL or is it fundamentally impossible due to
> JS security limitations?

I'd hope not, that would be quite a large security hole.

If you are in control of the page inside the iframe then there are
ways to allow remote procedure calls from ouside the frame, so you
could call a javascript function outside the frame when a link is
clicked.

The gadgets.rpc part of the google gadget api is a good example of
this (see the files in features/rpc of "shindig" - the open source
google gadget server - for an un-minified version)