It looks like the SecurityError: Blocked a frame with origin “coui:html_ui” issue is perhaps linked to the parent page and the frame needing to be loaded with the same protocols - doing some digging and found this javascript - Blocked iframe due to mismatch protocols - Stack Overflow
I wonder if there is a work around???