Do you already have Seidat account?

Tutorials

Embedding websites

In Seidat you can embed websites into slides. When a website is embedded, it's put into a special window called iframe.

For security reasons, HTTP (unsecured) iframes cannot be embedded within Seidat using HTTPS protocol, since any communication between the HTTP iframe and the server it is hosted on is not secure. This is to prevent phishing scams and other attacks. When viewing a presentation in HTTP mode someone on the same network may intercept your traffic and view the presentation. As such, HTTP viewing is not recommended if your presentation content is sensitive.

If you still wish to embed a website running on HTTP protocol, you should Allow Insecure (HTTP) Presentation Viewing in Presentation settings tab. Seidat will turn the HTTP mode on and will let a HTTP website be embedded. However, never share the url of the HTTP mode of the presentation since it can be accessed by anyone who has a link to it. Also, for security reasons you will not be logged in while using the app in HTTP mode.

 

 

 

 

Some other problems might occur when embedding a website into a presentation:

 

Other iframes that don’t load

Some websites do not allow themselves to be loaded in iframes. The most likely scenario is that the Headers (site settings) specified by the server include X-Frame-Options.  X-Frame-Options may be set to Sameorigin or Deny, both of which prevent iframes. 

More details: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options

Another header that may cause trouble is Content-Security-Policy

More details: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy

Solution:

NB: You need to have an access to website settings in order to change them

You need to remove an X-Frame-Options. However, if you still wish to use it, set these options:

X-Frame-Options: ALLOW-FROM https://app.seidat.com/

Content-Security-Policy: frame-ancestors 'self' *.seidat.com ;

 

More information on X-frame-options and Content-Security-Options:

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy

 

Tutorial updated: 07.06.2017 - 22:44

Please share