undefined | Better HN

0 pointssimpaticoder2y ago0 comments

> I never found a way for a server to check if the originating request is for an iframe or a new tab.

There is no such technique. One way to distinguish is to pick a URL convention and modify the URL (before the hash) of the iframe URL. For example, add ?iframe=true to the URL, and then have the server check for that. Perhaps more usefully you could include information about the parent URL, e.g. url += '?parent=${document.referrer}'. Or something.

0 comments

4 comments · 2 top-level

sesm2y ago· 2 in thread

Can we add a cookie instead of modifying URLs?

simpaticoderOP2y ago

No. The same cookies are added to both the host and guest pages.

nymanjon2y ago

I would think you could add a cookie with JS. Then you know JS is being used. So, that does seem viable.

niutech2y ago

There is a new request header: `Sec-Fetch-Dest: iframe`

j / k navigate · click thread line to collapse