diff --git a/source b/source index fa7e1049743..49d9b0ab4ca 100644 --- a/source +++ b/source @@ -30461,6 +30461,16 @@ interface HTMLIFrameElement : HTMLElement { data-x="attr-iframe-sandbox-allow-top-navigation">allow-top-navigation will have an effect in such non-conformant markup.
+To allow alert()
, confirm()
, and prompt()
inside
+ sandboxed content, both the allow-modals
+ and allow-same-origin
keywords need to
+ be specified, and the loaded URL needs to be same origin with the top-level
+ origin. Without the allow-same-origin
keyword, the content is
+ always treated as cross-origin, and cross-origin content cannot show simple
+ dialogs.
Setting both the allow-scripts
and allow-same-origin
keywords together when the