Web platform features explorer

Credentialless iframes

The credentialless attribute for the <iframe> HTML element loads third-party content in an ephemeral context and does not send any credentials such as cookies. When using cross-origin isolation, this allows you to embed content that does not send Cross-Origin-Embedder-Policy headers.

Status

Limited availability

MDN documentation

Browser support

  • Chrome 110 Released on 2023-02-07
  • Chrome Android 110 Released on 2023-02-07
  • Edge 110 Released on 2023-02-09
  • Firefox Vendor position : unknown (concerns: venue)
  • Firefox for Android Vendor position : unknown (concerns: venue)
  • Safari
  • Safari on iOS

Usage (according to Chrome Platform Status)

~0.016% of page loads. More data at chromestatus.