This link has been bookmarked by 59 people . It was first bookmarked on 02 Mar 2006, by Jon Phipps.
-
28 Sep 11
-
28 Jul 10
-
18 Sep 09
-
are ones that access
-
That restriction is that you aren't allowed to make
XMLHttpRequests to any server except the server where your web page came from.
-
-
11 Sep 08
-
23 Mar 08
-
27 Nov 07
-
11 Aug 07
-
17 Mar 07
-
15 Mar 07
-
26 Nov 06
-
20 Jul 06
-
13 Mar 06
-
20 Feb 06
-
23 Jan 06
-
18 Jan 06
-
01 Jan 06
-
20 Dec 05
-
16 Dec 05
-
30 Nov 05
Bernard FarrellHow to get around the security restrictions of XmlHttpRequest
ajax xmlhttprequest javascript programming security tutorial web2.0 xml
-
21 Nov 05
-
15 Nov 05
-
14 Nov 05
-
12 Nov 05
-
-
AJAX applications wouldn't be possible (or, at least, wouldn't be nearly as cool) without the XMLHttpRequest object that lets your JavaScript application make GET, POST, and other types of HTTP requests from within the confines of a web browser. All of the most interesting AJAX applications that have appeared in the past couple of years use the XMLHttpRequest object extensively to give users a responsive in-browser experience without the messiness of traditional HTML forms posting. But the kind of AJAX examples that you don't see very often (are there any?) are ones that access third-party web services, such as those from Amazon, Yahoo, Google, and eBay. That's because all the newest web browsers impose a significant security restriction on the use of XMLHttpRequest. That restriction is that you aren't allowed to make XMLHttpRequests to any server except the server where your web page came from. So, if your AJAX application is in the page http://www.yourserver.com/junk.html, then any XMLHttpRequest that comes from that page can only make a request to a web service using the domain www.yourserver.com. Too bad -- your application is on www.yourserver.com, but their web service is on webservices.amazon.com (for Amazon). The XMLHttpRequest will either fail or pop up warnings, depending on the browser you're using.
-
-
11 Nov 05
-
10 Nov 05
Page Comments
Would you like to comment?
Join Diigo for a free account, or sign in if you are already a member.