Dear Adobe Support Team,
I am experiencing a critical issue with Adobe Captivate related to loading content in an iframe after the update of the vendors-main.chunk.js file.
Context of the Problem:
Original Scenario:
- Before the update, the content generated via Adobe Captivate was correctly loaded inside an iframe on my website, which is hosted on the domain brsistemaescolar.com.
- The iframe was loading content from onlinecurso.me without any issues related to blocking or errors.
- The flow was working perfectly: interactive content created in Adobe Captivate was displayed correctly within the iframe.
Problem after the Update:
- Recently, we updated the content generated by Adobe Captivate, which included a newer version of the vendors-main.chunk.js file.
- After this update, the content from onlinecurso.me can no longer be loaded within the iframe on brsistemaescolar.com. When attempting to load the page in the iframe, the browser displays security-related errors and cross-origin (CORS) issues, specifically pointing to the new vendors-main.chunk.js file.
Errors Observed:
When I attempt to load the updated content inside the iframe, I receive the following error in the browser console:
php
Uncaught SecurityError: Failed to read a named property
'dispatchEvent' from 'Window': Blocked a frame with origin
"https://onlinecurso.me" from accessing a cross-origin frame. at vendors-main.chunk.js:
1:
472606 at vendors-main.chunk.js:
2:
3155092 at vendors-main.chunk.js:
2:
1017594 at vendors-main.chunk.js:
1:
1395876 at
is (vendors-main.chunk.
js:
2:
2051353) at
gc (vendors-main.chunk.
js:
2:
2070432) at t.
unstable_runWithPriority (vendors-main.chunk.
js:
2:
2088700) at
Hi (vendors-main.chunk.
js:
2:
2013168) at
mc (vendors-main.chunk.
js:
2:
2070191) at vendors-main.chunk.js:
2:
2070102
Actions Already Taken:
Security Headers Testing:
- I have adjusted the server's security settings to ensure that the X-Frame-Options and Content-Security-Policy headers allow iframe loading.
- Even after temporarily removing all security headers, the issue persists.
Disabling Proxy/CDN:
- I tested the content with Cloudflare and other proxies temporarily disabled to ensure they were not interfering. The problem remains.
Browser Console Inspection:
- I inspected the browser console, which indicates that the vendors-main.chunk.js file is the source of the security error.
- Before updating this file via Adobe Captivate, the content loaded without issues in the iframe.
Suspected Cause and Request for Assistance:
Based on the tests and the evidence collected, it seems that the update to the vendors-main.chunk.js file introduced some form of cross-origin blocking or a new security behavior that is preventing the content from loading in the iframe.
- What I need: I would like to understand if there were any changes in how Adobe Captivate generates the vendors-main.chunk.js file that might be causing this issue. Specifically, could the new version of this file be enforcing stricter security policies that block access to content when loaded within an iframe from a different domain?
- Requested guidance: I need guidance on how to adjust the file or project settings in Adobe Captivate to allow the content to be correctly loaded within an iframe from another domain, as it was before.
Additional Information:
- Primary Domain: brsistemaescolar.com
- Content Domain: onlinecurso.me
- Updated File Causing the Issue: vendors-main.chunk.js
- Tool Used: Adobe Captivate (latest version)
- Full Error Message: (provided above)
- Type of Problem: Cross-origin blocking (CORS) after updating the file via Adobe Captivate.
I appreciate your attention to this matter, and I am available to provide any further information if needed.
Best regards,
Sebastião
1
Responder
AdChoices