堆栈内存溢出
  简体   繁体   English

从 web 应用程序中使用 Javascript 打开 URL

[英]Open an URL with Javascript from a web app

 原文  2021-05-07 11:01:31       javascript/ html/ google-apps-script

问题描述

I have this code in my html javascript: window.location.assign('https://script.google.com/a/macros/smapostols.org/s/AKfycbz2BP0c6D7fdDDJUlRHcsCvNKoMuHW1_tN_wVy5iFs/dev?p=ok'); I have this code in my html javascript: window.location.assign('https://script.google.com/a/macros/smapostols.org/s/AKfycbz2BP0c6D7fdDDJUlRHcsCvNKoMuHW1_tN_wVy5iFs/dev?p=ok');

and it doesn't work, error: The page script.google.com refused connection .它不起作用,错误: The page script.google.com refused connection

This works fine with another URL (ie http://www.google.com ) and also works fine with: window.open('https://script.google.com/a/macros/smapostols.org/s/AKfycbz2BP0c6D7fdDDJUlRHcsCvNKoMuHW1_tN_wVy5iFs/dev?p=ok'); This works fine with another URL (ie http://www.google.com ) and also works fine with: window.open('https://script.google.com/a/macros/smapostols.org/s/AKfycbz2BP0c6D7fdDDJUlRHcsCvNKoMuHW1_tN_wVy5iFs/dev?p=ok');

Does anybody know the problem?有人知道问题吗?

1 个解决方案

解决方案1
 1  2021-05-07 12:20:03

Possible Answer:可能的答案:

Try setting the XFrameOptionsMode to ALLOWALL when serving your HTML.在为您的 HTML 提供服务时,尝试将XFrameOptionsMode设置为ALLOWALL

More Information:更多信息:

As per the developer documentation on XFrameOptionsMode :根据XFrameOptionsMode上的开发人员文档:

An enum representing the X-Frame-Options modes that can be used for client-side HtmlService scripts.表示可用于客户端HtmlService脚本的X-Frame-Options模式的枚举。 ... Setting `XFrameOptionsMode.ALLOWALL will let any site iframe the page, so the developer should implement their own protection against clickjacking. ... 设置 `XFrameOptionsMode.ALLOWALL 将允许任何站点 iframe 页面,因此开发人员应实施自己的保护措施以防止点击劫持。

Properties特性

Property财产 Type类型 Description描述
ALLOWALL Enum No X-Frame-Options header will be set.不会设置X-Frame-Options header。 This will let any site iframe the page, so the developer should implement their own protection against clickjacking.这将让任何站点 iframe 页面,因此开发人员应该实施自己的保护措施以防止点击劫持。
DEFAULT Enum Sets the default value for the X-Frame-Options header, which preserves normal security assumptions.设置X-Frame-Options header 的默认值,它保留了正常的安全假设。 If a script does not set an X-Frame-Options mode, Apps Script uses this mode as the default.如果脚本未设置X-Frame-Options模式,Apps 脚本将使用此模式作为默认模式。

Example:例子:

function doGet() {
  return HtmlService.createHtmlOutputFromFile('filename')
    .setSandboxMode(HtmlService.SandboxMode.IFRAME)
    .setXFrameOptionsMode(HtmlService.XFrameOptionsMode.ALLOWALL);
}

References:参考:

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何从MyApp Android在Web浏览器应用程序中打开URL - How to open URL at web browser app from MyApp Android 从基于JavaScript的Adobe AIR应用程序中打开URL - Open URL from within a javascript-based Adobe AIR app 使用javascript问题从网页打开Android应用程序 - Open android app from web page using javascript issue 使用javascript从Web应用程序强制链接在移动Safari中打开 - Force link to open in mobile safari from a web app with javascript 使用JavaScript从iPhone Web应用程序打开外部页面? - Open external page from iPhone web app using JavaScript? 从Javascript打开网页 - Open a web page from a Javascript 通过Javascript在Windows Metro App中打开URL - Open a url in Windows Metro App via Javascript 如何使用JavaScript打开已保存的Web应用程序? - How to open saved web app using JavaScript? 使用JavaScript获取我的Web App基本URL - Get My Web App Base URL in JavaScript Javascript打开移动应用程序也打开后备网址 - Javascript to open mobile app also open fallback url
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM