Allow forum to be embedded on multiple domains?
-
I have my forum embedded in my main site properly. But I need it to work on another url too.
I tried adding the sites comma separated to "Content-Security-Policy" and "Access-Control-Allow-Origin" (under advanced > headers), but it still only works on the main site. On the other one I get:
Firefox Can’t Open This Page To protect your security, THE SITE will not allow Firefox to display the page if another site has embedded it. To see this page, you need to open it in a new window.what am i doing wrong
-
Maybe it's just impossible. If I switch the content-security policy from one site to the other it works fine, maybe comma separated values just aren't allowed. But the first one before the comma still works for some reason. Also under the entry in settings it says "'none', 'self'(default) or list of URIs to allow. ", which seems to imply that you can have multiple.
-
I think I've got it, seems that they need to be separated by a space, not by commas.
-
@jim-bridger why are you embedding and not just using nginx to connect to it with your urls?
-
I think you want the frame options header setting
-
-
@dunlix I'm already using a custom theme, but my site has it's own login system where the user is shown logged in at the top -- this would not be possible if i put it into a nodebb theme. Also session-sharing and iframe is already working perfectly.
