HTTPS clone URL
Subversion checkout URL
You can clone with HTTPS or Subversion.
Clone in Desktop Download ZIPSecurity
rogerwang edited this page
·
13 revisions
Pages 80
- Home
- About Node.js server side script in nw.js
- API Overview and Notices
- App
- App protocol
- Application auto building scripts for Linux Windows and OSX
- Build native modules with nw gyp
- Building nw.js
- Changes related to node
- Changes to DOM
- Chromedriver
- Clipboard
- Command line switches
- Console and timers
- Control camera and microphone with getusermedia api
- Crash dump
- Debugging with devtools
- Debugging with Sublime Text 2 and 3
- Devtools jail feature
- Differences of JavaScript contexts
- Downloads of old versions
- Dragging files into page
- Extract info about gpu
- FAQ
- Faq name conflict
- Features list
- File dialogs
- Frameless window
- Get version of nw.js in app
- Getting Started with nw.js
- Handling files and arguments
- How node.js is integrated with chromium
- How to package and distribute your apps
- How to run apps
- How to run node webkit's test cases
- How to use node.js web modules in node webkit
- Icons
- List of apps and companies using node webkit
- List of apps and companies using nw.js
- Livereload nw.js on changes
- Making your app start at user login (OS X)
- Manifest format
- Menu
- MenuItem
- Mini browser in iframe
- Minimize to tray
- Native UI API Manual
- Node main
- node webkit 的文档加载顺序测试.以及对process的疑问
- Notification
- NW.js use express and similar web frameworks
- NW13 architecture
- Play with window
- Preserve window state between sessions
- Protect JavaScript source code with v8 snapshot
- Save persistent data in app
- Screen
- Security
- Shell
- Shortcut
- Show window after page is ready
- Testing
- The Kiosk mode
- The nw protocol
- The solution of lacking libudev.so.0
- The solution of lacking libudev.so.1
- Third party browser plugins
- Transfer objects between window and node
- Transparency
- Tray
- Troubleshooting
- Tutorials on Node WebKit
- Tutorials on nw.js
- Use datalist for auto completion
- Using MP3 & MP4 (H.264) using the video & audio tags.
- Using Node modules
- v0.3.2 release note
- Webgl support on windows
- Window
- Window menu
- Show 65 more pages…
node-webkit adds Node.js support and enhancement in DOM for trusted code and content. For untrusted code and content, it should remain in a normal frame or iframe, which is the same as the one in browser. So there are 2 kinds of frames in node-webkit: Node frame and normal frame.
Which frames are Node frames and which are not?
- iframes has the attribute
nwdisableare normal frames. - Local file, or remote URL matches the
node-remotefield. (nodejsfield should not be set to false in this case) - Frames opened with
window.openare normal frames when these flags are set:new-instance=trueandnodejs=false
What can Node frames do?
- Node support: access to
require,global,process,Bufferandrootfrom Node. - Universal access to other frames: this can get around all cross-domain security checks defined in DOM.
- Ignore
X-Frame-Optionsheaders for child frames.
nwdisable is added in 0.5.0 rc2