The other party has set X-Frame-Options to disallow nesting.
In this case, it cannot be opened when loaded into an iframe using window.open(). Requests using $.get are subject to the same-origin policy.
Assume that the PHP backend is used to make the get request. It is actually an interaction between our server and the other party's server, and the client's cookies will not be cleared.
Can we only use window.open() to open a new page to complete the access?
The background is: I hope to have a page from another website that requires the user to log in again every time when entering from my entrance. So I want to secretly help the user request the other party to log out.
The other party has set X-Frame-Options to disallow nesting.
In this case, it cannot be opened when loaded into an iframe using window.open(). Requests using $.get are subject to the same-origin policy.
Assume that the PHP backend is used to make the get request. It is actually an interaction between our server and the other party's server, and the client's cookies will not be cleared.
Can we only use window.open() to open a new page to complete the access?
The background is: I hope to have a page from another website that requires the user to log in again every time when entering from my entrance. So I want to secretly help the user request the other party to log out.
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
