I have to make an iFrame that will manage user's sensible information. I need the parent page not to be able to get information from it. What can you recommend me to achieve this goal?. I already saw how to obfuscate my javascript code, but its not enough I need to be impossible to have access from the website to some iFrame's values that are inside some fields that the user will fill up.
For example I try making my own frame and web to test the security and if I put this on the web: iFrameName.document.getElementById("idTextField").value; I get the text that the client filled, thats what I want to prevent, to be impossible (or very difficult) for the web to get the data of the fields I have in my iFrame.
Thank you all.
By the way Im using HTML, JS and PHP
