6 thoughts on “Making Embeddable Web Widgets Without iframes – Christopher Lambacher

  1. quick feedback:
    The content was clear and you came prepared 🙂
    improvement: tindie.js code was not readable, try zooming-in the area showing the code lines. thank you

  2. The most important feature of IFrame is that it acts as a sandbox. A consumer of your product doesn't have to worry that you will inject some nasty javascript code, which will steal everything that it's possible to steal from that user. And it's impossible to detect. For example you might just serve a different script based on IP to target somebody specifically.
    And if your service is compromised, every single service that uses your service is also compromised.

Leave a Reply

Your email address will not be published. Required fields are marked *