Injecting Auth Header into Cross-Origin-Request from browser
I have a web app written in javascript and C#. The web app contains an iframe in one of its pages. I need to embed an external web site (controlled by the client, and protected by an API Key) into this iframe.