Embedded DS not working inside an iframe?
Jason Bau
jasonbau at gmail.com
Tue Sep 27 15:26:32 BST 2011
On Tue, Sep 27, 2011 at 6:12 AM, Rod Widdowson <rdw at steadingsoftware.com> wrote:
>> Assuming privacy hostile cookies are enabled, there isn't any SP limitation that should prevent it,
>> that I know of.
>
I'm from the lab working on this:
http://donottrack.us/
So on the general evils of tracking, we're similiarly aligned philosophically.
> I was thinking about the EDS itself. It has been too long since I was in that area & I certainly never looked at iframes, but as I
> remember it grabs the outermost frame and pulls the parameters from that URL.
>
I think it's possible to first getElementById('idpSelect') then walk
the DOM to get the enclosing frame, then pull the URLs from that.
> So it's fine if you supply the parameters in the configuration, but less fine otherwise.
>
> But this is all speculation.
>
>> If there's a bug, file it.
>
> +1
>
>
>
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
>
More information about the users
mailing list