Cross Site ScriptingTim, Using FQDN does help and is recommended for most network configurations. If the issue is resolution of the host, using FQDN would minimize this issue. There is a greater chance that it has an entry in the DNS than just trying to resolve using the hostname.
If you try to connect to the Mid-Tier directly, without using your portal on the internet site, is your user able to connect to the Mid-Tier? Does it display a blank page too? If it does that it may be because the client does not have a compatible version of JRE installed. Worth checking that.. Cheers Joe -----Original Message----- From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] Behalf Of Clarkson, Timothy Sent: Wednesday, October 24, 2007 3:33 PM To: [email protected] Subject: Cross Site Scripting ** Hi there all, Well it is late at night here down under in NZ and I have an issue that I am hoping someone can shed a light on. I had had a few beer and cannot workout how to solve the problem without random changes to production which suggest that I should return to the beer rather than a ARS problem :-) Details: Customer comes to an internet site and uses iframes to display multiple applications in a context windows with a menu bar along the top. One of the options is the Remedy home page, the home page is displayed okay but when they click on the Remedy Requestor Console nothing happens (if the user is using IE, firefox is fine). We are using Mid-Tier 7.0.1 on IIS 6.0 and tomcat. Issue: How do I configure mid-tier/tomcat to recognise that the iframe is from the same site and not a cross-site application security issue without changing every IE installation Question: Do I need to just use a FQDN in tomcat? Regards Timothy Clarkson Business: [EMAIL PROTECTED] Personal: [EMAIL PROTECTED] IM: [EMAIL PROTECTED] 83 Rutland Street Merivale Christchurch New Zealand Phone: +64 3 3557563 Mobile: +64 21 482 666 No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.5.503 / Virus Database: 269.15.9/1090 - Release Date: 10/24/2007 8:48 AM _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org ARSlist:"Where the Answers Are"
