The Cross-Origin-Opener-Policy header has been ignored, because the URL’s origin was untrustworthy. It was defined either in the final response or a redirect. Please deliver the response using the HTTPS protocol. You can also use the ‘localhost’ origin instead. See Secure Contexts and HTML Standard.
嵌入代码
<script
async
defer
src="http:///api/application/embed?protocol=http&host=xxxtoken=xxx">
</script>