Merge pull request #4006 from diego0020/patch-1
Verify message comes from loginIframe
This commit is contained in:
commit
802f648757
1 changed files with 2 additions and 1 deletions
|
@ -832,10 +832,11 @@
|
||||||
document.body.appendChild(iframe);
|
document.body.appendChild(iframe);
|
||||||
|
|
||||||
var messageCallback = function(event) {
|
var messageCallback = function(event) {
|
||||||
if (event.origin !== loginIframe.iframeOrigin) {
|
if ((event.origin !== loginIframe.iframeOrigin) || (loginIframe.iframe.contentWindow !== event.source)) {
|
||||||
return;
|
return;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
if (event.data != "unchanged") {
|
if (event.data != "unchanged") {
|
||||||
kc.clearToken();
|
kc.clearToken();
|
||||||
}
|
}
|
||||||
|
|
Loading…
Reference in a new issue