Allows form submissions.
Allows the embedded browsing context to open modal windows.
Allows the embedded browsing context to disable the ability to lock the screen orientation.
Allows pointer lock.
Allows popups, such as window.open(), showModalDialog(), target=”_blank”, etc.
Allows a sandboxed document to open new windows without forcing the sandboxing flags upon them. This will allow, for example, a third-party advertisement to be safely sandboxed without forcing the same restrictions upon a landing page.
Allows embedders to have control over whether an iframe can start a presentation session.
Allows the document to maintain its origin. Pages loaded from https://example.com/ will retain access to that origin’s data.
Allows JavaScript execution. Also allows features to trigger automatically (as they’d be trivial to implement via JavaScript).
Allows the document to break out of the frame by navigating the top-level window.
Allows the embedded browsing context to navigate (load) content to the top-level browsing context only when initiated by a user gesture. If this keyword is not used, this operation is not allowed.
Enumeration of the supported
sandboxoptions for theiframe.