These forums are currently read-only due to receiving more spam than actual discussion. Sorry.

It is currently Sat Dec 02, 2017 4:05 pm Advanced search

We need AJAX CROSS DOMAIN

Do you think the HTML spec should do something differently? You can discuss spec feedback here, but you should send it to the WHATWG mailing list or file a bug in the W3C bugzilla for it to be considered.

We need AJAX CROSS DOMAIN

Postby nvcnvn » Wed Oct 20, 2010 2:26 am

For now, many language (like php) allow You use there libary to send POST or GET data to any domain (like cURLs in PHP).
Even some js lia\bary allow to do this with some more external script.

So we don't have to keep a powerfull function in one singel domain.
Just more powerfull when javascript in HTML5 can send the data all around the world!
nvcnvn
<h6>
 
Posts: 7
Joined: Sun Jul 18, 2010 11:55 pm

Postby mskinner » Wed Oct 20, 2010 3:30 am

Javascript keyloggers would become an identity thief's best friend.
mskinner
<h2>
 
Posts: 116
Joined: Sun Jun 24, 2007 12:20 am
Location: Melbourne, Australia

Postby zcorpan » Wed Oct 20, 2010 1:03 pm

XHR level 2 allows cross-origin requests if the server allows it (using CORS-related HTTP headers).

Keylogging isn't an issue since you can already send data to a remote origin with e.g. the <img> element, so that's not the reason XHR is same-origin by default.
zcorpan
<article>
 
Posts: 807
Joined: Tue Feb 06, 2007 8:29 pm
Location: Sweden


Return to Feedback on the Specs

Who is online

Users browsing this forum: No registered users and 1 guest