HTML: The Markup Language Reference

iframenested browsing context (inline frame) # T

The iframe element introduces a new nested browsing context.

Permitted contents #

Permitted attributes #

global attributes
Any attributes permitted globally.
src = URL potentially surrounded by spaces #
The address of a page that the nested browsing context is to contain.
name = browsing-context name #
A valid browsing context name.
Any string, with the following restrictions:
  • must not start with a "_" character
  • must be at least one character long
width = non-negative integer #
The width of the iframe, in CSS pixels.
height = non-negative integer #
The height of the iframe, in CSS pixels.
sandbox = sandbox “allow” keywords list NEW #
Instructs the UA to “sandbox” the iframe by disallowing/disabling various features, and then (optionally) re-allowing/re-enabling particular features.
The presence of this attribute—even if no value is given (that is, the attribute is specified using empty attribute syntax) or even if the value consists only of space characters—instructs the UA to enforce all the following default sandbox restrictions:
  • plugins are disallowed/disabled within the iframe
  • forms are disallowed/disabled within the iframe
  • scripts are disallowed/disabled within the iframe
  • links to other browsing contexts are disallowed/disabled within the iframe
  • same-origin treatment of the content hosted by the iframe and the content which hosts the iframe is disallowed/disabled; the iframe is instead treated as being from a unique origin
If any sandbox “allow” keywords are given, they instruct the UA to override particular default sandbox restrictions by re-allowing/re-enabling certain features, as follows:
  • allow-forms: re-enables forms
  • allow-scripts: re-enables scripts
  • allow-top-navigation: re-enables links within the content of the iframe to navigate to its top-level browsing context
  • allow-same-origin: re-enables same-origin treatment of the content hosted by the iframe and the content which hosts the iframe (instead of forcing the iframe into a unique origin)
seamless = "seamless" or "" (empty string) or empty NEW #
Instructs the UA that the iframe element’s browsing context is to be rendered in a manner that makes it appear to be part of the containing document (seamlessly included in the parent document).

Additional constraints and admonitions #

Tag omission #

An iframe element must have both a start tag and an end tag.

Permitted parent elements #

any element that can contain phrasing elements

DOM interface #

interface HTMLIFrameElement : HTMLElement {
           attribute DOMString src;
           attribute DOMString srcdoc;
           attribute DOMString name;
  [PutForwards=value] readonly attribute DOMSettableTokenList sandbox;
           attribute boolean seamless;
           attribute DOMString width;
           attribute DOMString height;
  readonly attribute Document contentDocument;
  readonly attribute WindowProxy contentWindow;

Typical default display properties #

iframe {
border: 2px inset; }