Q1068 Cross domain security violation in frames

You are here: irt.org | FAQ | JavaScript | Bugs | Q1068 [ previous next ]

Symptom: Using the javascript protocol (as in <A HREF="javascript:createHtml()"> in frames, the base href of the dynamic document gets changed to javascript: with security violation as a result.

Affects: 4.03!

Workaround: In this case I chose to only rewrite the html on browsers that did not support the image array (Internet Explorer 3.x) and change the buttons and replace the href property on browsers that did.