Cross-Origin Isolation Playground

Try various security headers and see how it affects loading of cross-origin contents.

Reports will be sent to https://reporting-endpoint.glitch.me/post/J7ClcUAu.
Open the page and wait for the reports to show up. Reload not needed.

Set HTTP headers for this page.






Test identity federation with iframe and 3p cookie

Set various headers for a cross-origin image.




Reload the image

Set various headers for a cross-origin iframe.








Reload the iframe
Send a postMessage

Set various headers for a cross-origin popup window.

Set various headers for a same-origin worker script.




Load a worker
Send a postMessage

Learn more


Created by @agektmr. See the code of this page here.