Is it 100% impossible to get the browser URL from the iframe html of an iframe that is loaded onto a separate domain? I tried javascript and it did not work. What language could I do this in? Thanks!
UPDATE Thanks for the help! PHP does work.
<?php
if(isset($_SERVER['HTTP_REFERER']))
{
echo $_SERVER['HTTP_REFERER'];
}?>
You can get the initial src property the iframe is set to.
alert(document.getElementById("iframeID").src);
however if the inlying document is navigated to another page, you are definitely not able to get the new address.
If what you're asking is if you can get the URL of the browser that's hosting your page in an iframe through Javascript, the answer is no; you cannot do this in a properly-written web browser. If an iframe could spy on whatever is hosting it, then all kinds of malicious things could be done.
What you may be able to do is from your server-side code look at the referrer HTTP header in the request for your hosted page. That should be set to the URL of the page that's embedding your page.
Once the user has navigated within that iframe which is in a different domain that the main document, you do not have access to any of the info about that new document within the iframe. This is to protect from XSS exploits and cannot be "worked around"
Just use this JavaScript to detect if your page is inside an frame or iframe:
<script>
if(top.frames.length > 0)
{
// do something like this to kill the iframe
top.location = "http://mysite.com";
}
</script>