Specifies the Content Security Policy that an embedded document must agree to enforce upon itself. See IFrame credentialless for a deeper explanation. In return, the Cross-Origin-Embedder-Policy (COEP) embedding rules can be lifted, so documents with COEP set can embed third-party documents that do not.
This context does not have access to the parent context's shared storage and credentials. HTMLIFrameElement.credentialless ExperimentalĪ boolean value indicating whether the is credentialless, meaning that its content is loaded in a new, ephemeral context. Returns a WindowProxy, the window proxy for the nested browsing context. Returns a Document, the active document in the inline frame's nested browsing context. This reflects the browsingtopics content attribute value. HTMLIFrameElement.browsingTopics Experimental Non-standardĪ boolean property specifying that that the selected topics for the current user should be sent with the request for the associated 's source.
HTMLIFrameElement.allowPaymentRequest Deprecated Non-standardĪ boolean value indicating whether the Payment Request API may be invoked inside a cross-origin iframe. HTMLIFrameElement.allowFullscreenĪ boolean value indicating whether the inline frame is willing to be placed into full screen mode. This attribute also accepts the values self and src which represent the origin in the iframe's src attribute. HTMLIFrameElement.allowĪ list of origins the frame is allowed to display content from. HTMLIFrameElement.align DeprecatedĪ string that specifies the alignment of the frame with respect to the surrounding context. Inherits properties from its parent, HTMLElement. browsingTopics Experimental Non-standard.allowPaymentRequest Non-standard Deprecated.