There are a lot of possible issues. Try with one of these solutions:

有很多可能的问题。尝试使用以下解决方案之一：

• protocols must be the same (so the page that attempts to access the iframe must have the same protocol of the site that deliver the iframe), so if you are testing your app in sandbox mode (http instead of https), disable the "Secure browsing" mode of your testing account
• channelUrl on FB.init()(see code below)
• enable the headers mod of apache and put the below lines in your .htaccess
• put the <div id="fb-root"></div>after the body tag as explained in the fb doc here: https://developers.facebook.com/docs/reference/javascript/
• try to put all the automated login code after a user action (like a click on a login button)
• remove the trailing slash from the Canvas URL (in app→settings) like http://yoursite.com?
• edit your <html>tag like this: <html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="https://www.facebook.com/2008/fbml">

• 协议必须相同（因此尝试访问 iframe 的页面必须与提供 iframe 的站点具有相同的协议），因此如果您在沙盒模式（http 而不是 https）下测试您的应用程序，请禁用“安全浏览”测试帐户的模式
• channelUrl on FB.init()（见下面的代码）
• 启用 apache 的 headers mod 并将以下几行放在您的 .htaccess 中
• <div id="fb-root"></div>按照 fb 文档中的说明将 body 标签放在后面：https: //developers.facebook.com/docs/reference/javascript/
• 尝试在用户操作之后放置所有自动登录代码（例如单击登录按钮）
• 从 Canvas URL（在应用程序→设置中）中删除尾部斜杠，例如 http://yoursite.com?
• <html>像这样编辑你的标签：<html xmlns="http://www.w3.org/1999/xhtml" xmlns:fb="https://www.facebook.com/2008/fbml">

Code for .htaccess

.htaccess 的代码

<IfModule mod_headers.c>
    Header set Access-Control-Allow-Origin "*"
</IfModule>

Code for channelsissue:

渠道问题代码：

FB.init({
    appId: '1234567890',
    status: true,
    cookie: true,
    xfbml: true,
    channelUrl : '//yoursite.com/channel.html'
});

The channel.htmldelivered by your server should contain this single line:

您的服务器提供的channel.html应包含以下一行：

<script src="//connect.facebook.net/en_US/all.js"></script>

EDIT

编辑

About your first issue:

关于你的第一个问题：

The page at about:blank displayed insecure content from http://static.ak.facebook.com/connect/xd_arbiter.php?version=18#cb=f2e4fe7b…os.com%2Ff4aeadb2&domain=www.mydomain.com&relation=parent&error=unknown_user.

This is an expected exception that is used to test for a condition - this has no side effects so don't care about it.

这是用于测试条件的预期异常 - 这没有副作用，所以不要关心它。

Please refer to this question: Unsafe JavaScript attempt to access frame with URL: Domains, protocols and ports must match.

请参考这个问题：不安全的 JavaScript 尝试访问具有 URL 的框架：域、协议和端口必须匹配。

In my case I had a "facebook-like-box" at "_Layout" view and I had to customize some CSS for it, at the global.cssfile.

就我而言，我在“_Layout”视图中有一个“facebook-like-box”，我必须在global.css文件中为它自定义一些 CSS 。

.fb_iframe_widget, .fb_iframe_widget span, .fb_iframe_widget span iframe[style] {
    width: 100% !important;
}

Then, when I tried to load internal pages, such as Articles and News, which has a share button for facebook, it starts to give me this error:

然后，当我尝试加载具有 Facebook 共享按钮的内部页面（例如文章和新闻）时，它开始出现以下错误：

Uncaught SecurityError: Failed to read the 'contentDocument' property from 'HTMLIFrameElement': Blocked a frame with origin "http://localhost:51826" from accessing a frame with origin "http://static.ak.facebook.com". The frame being accessed set "document.domain" to "facebook.com", but the frame requesting access did not. Both must set "document.domain" to the same value to allow access.

Somehow I think that line of CSS code was causing this issue (by being at the global scope), trying to access and modify behavior of the iframe for my share button.

不知何故，我认为这行 CSS 代码导致了这个问题（通过在全局范围内），试图访问和修改我的共享按钮的 iframe 的行为。

1. Removing that line of CSS code solved the problem.
2. Moving that line of CSS code to the specific page which has the "facebook-like-box" inside < style > tags.

1. 删除那行 CSS 代码解决了这个问题。
2. 将这行 CSS 代码移动到特定页面，该页面在 <style> 标签内具有“facebook-like-box”。