Embedded chat breaks after raids

aho · June 12, 2021, 10:19am

I’ve embedded https://www.twitch.tv/embed/<channel>/chat?darkpopout&parent=<domain> on a site. When <channel> raids another channel, call that <target>, the frame is redirected to https://www.twitch.tv/<target>/chat?darkpopout&no-reload=true&parent=<domain>&referrer=raid.

The problem is, the latter page doesn’t send the appropriate Content-Security-Policy with the parent domain in frame-ancestors; instead it has X-Frame-Options: SAMEORIGIN, so the embed breaks because of a CORS error.

An appreciated fix would be to change the redirect target to https://www.twitch.tv/embed/<target>/chat?darkpopout&parent=<domain>, or better yet, give an option to disable redirects on raids.

BarryCarlyon · June 12, 2021, 11:43am

Issue 246 has reoccured it would seem

github.com/twitchdev/issues

Embeds cannot follow a raid

opened 01:22AM - 27 Oct 20 UTC

closed 04:55PM - 17 Dec 20 UTC

BarryCarlyon

ticketed done product: embeds

**Brief description** When a raid occurs, the embed tries to follow the raid …and dies **How to reproduce** Make a embed go on a raid **Expected behavior** Not sure what the correct behaviour is **Screenshots** Strippin (bottom) raided JesseCox (top) Resulting in a dead embed ![image](https://user-images.githubusercontent.com/20999/97245281-9be60680-17f2-11eb-9eef-79429fde2b49.png) `www.twitch.tv failed to connect` `Refused to display 'https://www.twitch.tv/jessecox?channel=strippin&height=480&migration=true&parent=myvalidparemt&referrer=raid&theme=dark&width=100%25' in a frame because it set 'X-Frame-Options' to 'sameorigin'`

Have requested it be reopened

system · July 12, 2021, 11:43am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.