cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - New to the community? Learn how to post a question and get help from PTC and industry experts! X

Embed mashup in iFrame

Ju
10-Marble
10-Marble
‎Jun 30, 2021 06:28 AM
‎Jun 30, 2021 06:28 AM

Embed mashup in iFrame

Hello,

 

I want to embed in another website a mashup as iframe.

I have done the configuration like explained in the help :

https://support.ptc.com/help/thingworx/platform/r9/en/index.html#page/ThingWorx%2FHelp%2FComposer%2FSecurity%2FAllowingEmbeddedMashupsiniFrames.html

In the filter "ClickjackFilterWhiteList", I have added domain : http://aa.bb.fr

But it's not working...

 

With Postman, when I do a get on my url:

http://xxx/Thingworx/Mashups/TEST_VIEW?appKey=xxx&x-thingworx-session=true

I can see the headers:

Content-Security-Policy : frame-src http://aa.bb.fr

Content-Security-Policy : frame-ancestors http://aa.bb.fr

X-Frame-Options : ALLOW-FROM http://aa.bb.fr

So, I guess my config in web.xml is ok.

 

In the browser, when I enter my url :

http://xxx/Thingworx/Mashups/TEST_VIEW?appKey=xxx&x-thingworx-session=true

The page load but is redirect to url :

http://xxx/Thingworx/Runtime/index.html#mashup=TEST_VIEW&appKey=xxx&x-thingworx-session=true

I can see in the console that CSP (content-security-policy) are not set here. Just the default :

Content-Security-Policy: frame-ancestors 'self'
 
Any idea ? Thanks for help.
Labels:
Notify Moderator
5 REPLIES 5
slangley
23-Emerald II
23-Emerald II
(To:Ju)
‎Jul 15, 2021 03:39 PM
‎Jul 15, 2021 03:39 PM

Hi @Ju

 

Here is an article that may apply to your situation.  Please check it out and let us know if you still have issues.

 

Regards.

 

--Sharon

 

 

0 Kudos
Notify Moderator
Ju
10-Marble
10-Marble
(To:slangley)
‎Jul 16, 2021 03:44 AM
‎Jul 16, 2021 03:44 AM

Hi,

thanks for the link. We did several tests but not this one.

The project is paused but I will try to do this test later.

0 Kudos
Notify Moderator
slangley
23-Emerald II
23-Emerald II
(To:slangley)
‎Jul 23, 2021 02:58 PM
‎Jul 23, 2021 02:58 PM

Hi @Ju

 

Did you get a chance to check the article previously provided?  If if helped to solve your issue, please mark the appropriate response as the Accepted Solution for the benefit of others with the same issue.

 

Regards.

 

--Sharon

0 Kudos
Notify Moderator
Ju
10-Marble
10-Marble
(To:slangley)
‎Jul 27, 2021 04:41 AM
‎Jul 27, 2021 04:41 AM

For information, a colleague tried it, it doesn't work.

Regards

0 Kudos
Notify Moderator
slangley
23-Emerald II
23-Emerald II
(To:slangley)
‎Jul 27, 2021 03:44 PM
‎Jul 27, 2021 03:44 PM

Hi @Ju

 

Are you getting any errors?  Have you tried running Dev tools (F12) in Chrome to track down the cause of the issue?

 

Regards.

 

--Sharon

0 Kudos
Notify Moderator
Announcements


Contact Community Management
Top Tags