0

Getting around X-Frame-Options in a Chrome extension is pretty easy. But unfortunately this is not working for a Chrome Web Store URL. When I try to load https://chrome.google.com/webstore/category/apps in an iframe, I still get this console error:

Refused to display 'https://chrome.google.com/webstore/category/apps' in a frame because it set 'X-Frame-Options' to 'sameorigin'.

And this is what gets loaded inside the iframe tag: <html><head></head><body></body></html>

I'm sure I removed the X-Frame-Options header correctly in onHeadersReceived(), as this works for example with http://www.google.com (and it doesn't without removing the X-Frame-Options header).

Any idea on how to fix this?

asked Jan 19, 2014 at 13:34

1 Answer 1

1

The Chrome Web Store has special permissions that block extensions from manipulating it. See this answer for more details.

answered Jan 19, 2014 at 16:40
Sign up to request clarification or add additional context in comments.

Comments

Your Answer

Draft saved
Draft discarded

Sign up or log in

Sign up using Google
Sign up using Email and Password

Post as a guest

Required, but never shown

Post as a guest

Required, but never shown

By clicking "Post Your Answer", you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.