Home | Articles | CV (pdf)
<2011-03-30> by Lorenzo Bolla

Handling an iframe from the inside

If you've ever worked with iframes you've certainly run into the same origin policy.

From here:

The same origin policy basically limits how scripts and frames on different domains can talk to each other.

This is particularly bad if you want to resize an iframe to accomodate its content, as this is not doable with simple CSS (to the best of my knowledge!). It can be done using window.postMessage, though.

See a demo here.

Basically, the content of the iframe fires postMessage=s to its parent window and the window itself, i.e. the =iframe container, handles them. Cool…