Nerd-puzzle: how might I allow sibling same-origin iframes to communicate, given…
- parent is cross-origin
- can’t execute JS on parent
- no sessionStorage, localStorage, cookies, or IDB access
- with enough security to share auth tokens?
Conversation
Can they both use the same Service Worker?
1
Replying to
Hm, hm. Firefox doesn’t allow service workers when third-party cookies are disabled, but otherwise this does seem to work.