问题
I have an iframe to which the content is injected from the third party library I am using.
<iframe id="targetIframe"></iframe>
The library is injecting a form which user needs to submit. Problem is that when the form is initialized they are doing some requests and header origin is send as a null which is causing a problem because their servers are not allowing null value.
I tried to add sandbox attribute, even tried to fake the call but with origin but the iframe is secured with CORS.
Is there any way to overcome this or it should be the third party library developers responsibility?
This is a request which is being returned as http 302 and I have read that browsers are always sending origin: null for 302. Is that right?
来源:https://stackoverflow.com/questions/53549369/iframe-sends-origin-as-null