Show panoramas only on permitted sites

Beginner

Wednesday, June 6th 2018, 11:24pm

Show panoramas only on permitted sites

Hi. I've tried to search for an answer to this but not sure if I've found the right one.

All my panos are hosted on mydomain.com. I give my clients access to their panos via an iframe so they can embed on their own websites (clientdomain.com). Is there a way to limit the display of the panos to only mydomain.com and clientdomain.com? At present it's very easy for my clients to just share the iframe code I give them to other 3rd parties that have not licensed the panos.

Will using the "Limit Domains" function in the Protect Tool solve this for me even when using iFrames?

Thanks for any help
Thomas

Go to the top of the page

srisa

Trainee

Posts: 143

Friday, October 12th 2018, 5:45pm

When content is displayed through iframe, krpano will only get the domain name from the src attribute of the iframe, which will be your domain.
You should disable iframing of your site content through 'X-Frame-Options' header of apache web server. You should be able to white list the domains that you want allow iframes on through that header.
Or, you can try using javascript to verify domain name before allowing your tour to be displayed in iframe. Something like this:

Quoted

if (self === top) {
show_tour();
}
else {
if (top.location.hostName === 'your-client-domain.com') {
show_tour();
}
else {
do_not_show_tour();
}

}

Go to the top of the page

Similar threads

- krpano Tools »
- Running krpanotools via a script (Apr 15th 2014, 6:24pm)
- kprotect »
- Show panorama only permitted site (Jun 14th 2012, 3:12pm)
- HTML Embedding / Javascript »
- how to add facebook "like it" button on panorama? (Dec 31st 2010, 1:09pm)
- Maps »
- Spot Naming Conventions? (Feb 14th 2010, 1:22am)
- Panoramas »
- The beginning of yet another panorama site (May 26th 2009, 9:45pm)