
Allow SSO iFrames 作者: chaptergy
Drops and changes HTTP response headers to allow sso login pages to be iframed.
9 个用户9 个用户
扩展元数据
关于此扩展
This plugin changes HTTP headers to allow websites to be iframed which block this. It is meant for development and testing purposes.
It does the following:
Note, that when cookies within this iframe are required, the iframe content has to be HTTPS, otherwise cookies will not be set.
It does the following:
- Drop all 'x-frame-options' response headers
- Drop all 'content-security-policy' response headers
- Change all 'set-cookie' response headers to set 'SameSite=None' (this also requires the Secure flag to be set for the cookie)
- Change 'sec-fetch-dest' request headers to 'document' if it equals 'iframe'
Note, that when cookies within this iframe are required, the iframe content has to be HTTPS, otherwise cookies will not be set.
评分 4(1 位用户)
权限与数据详细了解
必要权限:
- 访问您在所有网站的数据
更多信息
1.1 的发布说明
Bugfix for replacing the SameSite header