If the follow button is created in an iFrame on a foreign domain, the
button will not render in Firefox due to a XSS permissions error.

Consider this:

Page: abc.com/index.html
[
   iframe: xyz.com/iframe.html
   [
      {Follow button}
   ]
]

Firefox will throw a "Permission denied to call Location.href" error
because the follow button code looks to window.top.location.href
instead of window.parent.location.href. An iframe shouldn't know about
the outermost frame, just its parent.


-- 
To unsubscribe, reply using "remove me" as the subject.

Reply via email to