How to restrict the redirection of SAML 302 to IFRAME?

Question

How to restrict the redirection of SAML 302 to IFRAME?

Is it possible to upload content to IFRAME, which subsequently returns a 302 redirect, without redirecting the entire browser window to the destination? That is, to restrict the redirection to IFRAME itself? If so, how?

EDIT1: for reapproval ... I have an IFRAME whose source is a self-publishing form. The action returns 302 to another location. When this happens, the entire page is redirected. I want ONLY IFRAME redirection, leaving only one page.

EDIT2: To clarify, this is an implementation of SOM SSO. IFRAME content must contain a recently signed application. SSO works correctly, but the entire browser page is redirected to the application, losing the containing page. The SAML aspect cannot change the diagnosis that the application is "busting", but may cause some other ideas.

+3

redirect http iframe single-sign-on saml

bill weaver Feb 25 '10 at 22:28

source share

2 answers

, JavaScript "Frame buster" . .

+1

Pekka 웃 26 . '10 15:35

Martin · Accepted Answer · 2010-02-25T22:40:10+0000

It is impossible not to restrict the 302 redirect to the iframe itself. HTTP redirects occurring inside an iframe will never affect the containing page. What you ask for is already the only behavior you will see.

, . iframe, , .

How to restrict the redirection of SAML 302 to IFRAME?

More articles: