In-Context Editor Troubleshooting

Getting this message?

Your website has restrictions in place from being loaded in an iframe.

The in-context editor can sometimes fail to load due to certain browser security restrictions, due to its use of iFrames. You may need to adjust your HTTP headers to resolve the issue. MSDN has a great article explaining the problem.

The simplest solution is to install this Chrome extension to bypass the x-frame headers.

Please note: X-Frame is a security measure implemented by some websites. Use of this extension is at the user's discretion. If you choose to use this chrome extension, we recommend activating the extension only when you are using the In-Context editor.

Advanced Troubleshooting

If you're experiencing issues with the in-context editor, please make sure that the Localize javascript library is active and properly installed on your website or application. The editor will not work without the Javascript SDK active on the page.

Also ensure that you're logged in to the correct project when using the editor. If you are not switched into the matching project, the editor may appear functional, but will fail to work if the project you are logged in to does not match the project that was used to install Localize.

Additionally, please note that TLS/SSL connections are required for utilizing the in-context editor. "Http" only websites will no longer load within the editor due to security restrictions. This often presents a problem when using the editor with localhost or staging environments. In these cases, you may utilize a SSL certificate to enable "https" on local or staging environments. Alternatively, tools such as ngrok may be used to tunnel localhost connections through a public and secured temporary endpoint.

If using a self-signed SSL certificate, you may have to load the webpage outside of the editor to override browser warnings that may be triggered by self-signed certificates.

If you continue to experience issues using the in-context editor, we recommend reviewing the HTTP headers (such as CSP, X-Frame, and other HTTP header restrictions). In order for the in-context editor to function, the web application must be able to load and run within an iFrame. You may need to whitelist the in-context editor domain, "https://localize.live", to allow the in-context editor to function on websites with strict iFrame or cross-origin resource restrictions.