Home → Arctic Reservations → Guest-Facing Site → IFRAME Access Control List
30.7. IFRAME Access Control List
If you are using the IFRAME implementation for the Guest-facing Site, you can enable the "Access Control List" settings to ensure that your IFRAME cannot be embedded into any other domain outside of the domain you deployed it to and used in the IFRAME URL. If there are other sites that you want to be able to embed a copy of your IFRAME into, you can add those domain names to grant permission for those domains to host your IFRAME.
This setting is to add an additional layer of control so that you limit the IFRAME from being able to be embedded into a site that you don't control.
To enable the "Access Control List" go to the "Settings" page under "Guest-facing Sites" and click the "Pencil" next to "IFRAME Access Control List".
On the "Configure: IFRAME Access Control List", set the "Access Control List" field to "Enabled" to enable the setting.
If you will not want your IFRAME to be installed on any other domains, you can click the "Save Setting" and your IFRAME will only be able to be used on the domain in the IFRAME URL.
If you want your IFRAME to be able to be embedded on other domains that you control or partner with, you can add those domains to the "Additional Domains" field.
Each domain or subdomain should be listed on a single line and can be entered as follows:
www.domainname.com
domainname.com
www.subdomain.domainname.com
subdomain.domainname.com
Once you have the additional domains needed entered in the "Additional Domains", click "Save Setting" to save your changes.
If you have any questions or run into any challenges implementing the Access Control List, please feel free to contact support.
. . . . .