Comments on: Injecting HTML into an IFrame

By: Roque SOlis

Roque SOlis — Wed, 17 Feb 2010 20:15:29 +0000

Hello,
I would like to pose a question to you regarding the iframe. We are developing a password manager and have to be able to parse out any website that accepts credentials and we struggle with websites that use the iframe for this purpose, particularly when we’re in Internet Explorer. Our code works perfectly in Firefox. My developers tell me that it has something to do with IE’s security and the iframe, not being that familiar with either one of those topics I set out to do some research. Is there any information you can share with me on this topic? The problem is that we need to be able to parse out information that is embedded in an iframe, and so far we have not been able to do it.

Thanks,
Roque

By: Not Your Grandpa’s Framesets: Premasagar Rose shows us IFrame 2.0!

Not Your Grandpa’s Framesets: Premasagar Rose shows us IFrame 2.0! — Tue, 09 Feb 2010 00:31:59 +0000

[...] (aka squirt, inject; summary) content into a fresh [...]

By: Inline SVG

Inline SVG — Mon, 26 Jan 2009 19:12:50 +0000

[...] tried the Inject HTML into an iframe technique. I was hoping that with the right XML declaration and HTML type, I could convince the iframe it was [...]

By: FND

FND — Wed, 26 Nov 2008 11:44:51 +0000

FWIW, it’s worth noting that there are security implications with this:
http://trac.tiddlywiki.org/ticket/834#comment:1

By: Noei

Noei — Tue, 30 Sep 2008 22:30:41 +0000

Is this still possible with all modern browsers? I think its still feasible but i can see it having problems manipulating some of the inner Iframes source.

By: Dylan

Dylan — Wed, 24 Sep 2008 18:24:46 +0000

That's all well and good but doesn't that pose some serious issues for I.E?

Like you can't clone a node from the iframe and insert it into the main document due to the whole ownerDocument issue. What's the work around for that one, good ol (god awful non standards compliant) outerHTML?

By: outaTiME at refinn dot com » Blog Archive » Introducing HTML into an iframe and getting it back

Mon, 11 Aug 2008 19:06:28 +0000

[...] Mahemof is working a lot with TiddlyWiki and posted on how the project injects HTML into an iframe, and then get them out later. This enables you to use the browser parser to do its thing: // put it [...]

By: Jonathan Lister

Jonathan Lister — Thu, 07 Aug 2008 14:59:41 +0000

Girma, the difference is that you can't run getElementById on a div.

Also, the iframe behaves like a sandbox for CSS, so any CSS in the new document doesn't interfere with your original document.

Finally, the document inside the iframe has its own DOCTYPE, so if you were doing anything depended on having a particular DOCTYPE, you could do it inside the iframe.

By: Tomas

Tomas — Thu, 07 Aug 2008 11:02:33 +0000

Girma => The benefit is that you can use document.write after page has already loaded, otherwise it would "delete" the current document.

document.write does a lot of things that innerHTML doesn't

By: Girma

Girma — Wed, 06 Aug 2008 19:51:44 +0000

what is the benefit of using an iframe, can we just use any other html element like div?