File upload cross frame security issue

Forum Moderators: open

Message Too Old, No Replies

File upload cross frame security issue

brmmbrmm

2:19 pm on Dec 4, 2007 (gmt 0)

I seem to have hit an IE7 (possibly 6 as well, but can't confirm) problem to do with cross frame security, and can find no documentation about it.

The problem occurs with a JS generated pop-up window which opens a file upload control. On submit, control returns to the pop-up's parent. This has worked for years, but I've recently found a situation where the file simply doesn't upload.

Incidentally, returning control to the parent is achieved with an onload of

document.forms[0].target=window.opener.name

Tried setting security to the lowest. Any suggestions much appreciated.

BlobFisk

12:48 pm on Dec 5, 2007 (gmt 0)

Hi brmmbrmm,

Have you tried using DOM2 code? You use:

document.forms[0]

Try:

document.getElementById('formID')

HTH

brmmbrmm

4:58 pm on Dec 5, 2007 (gmt 0)

Thanks for the suggestion. Does that have different security implications? The setting of the target is working fine - its just that one user's browser causes this problem of the file not uploading. 1000+ other users have no trouble with it.