Same Origin Policy is a security feature that makes sure that the attacker cannot make a request by embedding a website within their website using iframes.
This policy only allows to read from the iframe if comes from the same domain, use the same protocol and have the same port.