cross-domain

问题 I have a bunch of subdomains in one single server: a.example.com b.example.com news.example.com All of them are in the same Apache virtualhost. I need to use a feed provided by the news subdomain inside the a and b subdomain. The feeds typically look like this: news.example.com/news/a news.example.com/news/b On the a and b subdomains, I'm using jquery's ajax function to load the data from the news feeds, and present it on a and b. This initially didn't work, because of the same-origin policy.

问题 My Ajax cross domain request is failing in IE 9 with "Access denied". I have read through several posts regarding this topic, and AFAIK it should work. IE9 and jQuery 1.8.1 Call is async , jsonp and crossdomain , cache is false . These are the prerequisites I have found. Works in latest Firefox and Chrome. jQuery.support.cors is true Even the response header is set: Access-Control-Allow-Origin:* (SO) The returned JSON code would also be correct, have used a checker (also see 3.) So why is

问题 My Ajax cross domain request is failing in IE 9 with "Access denied". I have read through several posts regarding this topic, and AFAIK it should work. IE9 and jQuery 1.8.1 Call is async , jsonp and crossdomain , cache is false . These are the prerequisites I have found. Works in latest Firefox and Chrome. jQuery.support.cors is true Even the response header is set: Access-Control-Allow-Origin:* (SO) The returned JSON code would also be correct, have used a checker (also see 3.) So why is

问题 My Ajax cross domain request is failing in IE 9 with "Access denied". I have read through several posts regarding this topic, and AFAIK it should work. IE9 and jQuery 1.8.1 Call is async , jsonp and crossdomain , cache is false . These are the prerequisites I have found. Works in latest Firefox and Chrome. jQuery.support.cors is true Even the response header is set: Access-Control-Allow-Origin:* (SO) The returned JSON code would also be correct, have used a checker (also see 3.) So why is

问题 I have hosted my Silverlight application in IIS, now when I try to access the application I get the following error System.ServiceModel.CommunicationException: an error occured while trying to make request to URI This could be due to attempting to access a service in a cross-domain way without proper cross-domain policy in place, or policy that is unsuitable for SOAP services..... I have placed the cross-domain policy properly in wwwroot as well as in the virtual directory. <?xml version="1.0

问题 Chrome is not allowing a child iframe to read its own cookies. I have a parent webpage with a child iframe: parent at https://first-site.com child at <iframe src="https://second-site.com"> (inside of parent) cookie set with path: '/' secure: true httpOnly: false domain: '.second-site.com' I control both sites, and I want the iframe to perform an operation within the iframe that requires reading cookies for .second-site.com . The outer parent doesn't need to know anything about this. It works

问题 Hi Is it possible to load an XML file from a domain that differs from scripts domain with pure javascript and without using a php/asp/jsp/... script as proxy? Something like xmlHttpRequest but with ability to manage cross domain requests. Thanks 回答1: You can use something called JSONP. I know the name sucks, because it's not really related to JSON. But this requires you have control over the other domain. You need to wrap your XML inside a function call, or assign it to a javascript variable:

问题 I'm using jQuery 1.7.2 and would like to make a POST request to another domain. It must be a POST request. But this does not work in internet explorer (I tried on IE9); it works on all other browsers. I have this script: <script> jQuery.support.cors = true; jQuery(function() { $.ajax({ crossDomain : true, cache: false, type: 'POST', url: 'http://someotherdomain/test.php', data: {}, success: function(da) { console.log(JSON.stringify(da)) }, error: function(jqxhr) { console.log('fail') console

问题 In both image and script tags. My understanding was that you can access both scripts and images on other domains. So when does one use this attribute? Is this when you want to restrict the ability of others to access your scripts and image? Images: https://developer.mozilla.org/en-US/docs/Web/HTML/Element/img#attr-crossorigin Scripts: https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script 回答1: CORS-enabled images can be reused in the element without being tainted. The allowed values

问题 In both image and script tags. My understanding was that you can access both scripts and images on other domains. So when does one use this attribute? Is this when you want to restrict the ability of others to access your scripts and image? Images: https://developer.mozilla.org/en-US/docs/Web/HTML/Element/img#attr-crossorigin Scripts: https://developer.mozilla.org/en-US/docs/Web/HTML/Element/script 回答1: CORS-enabled images can be reused in the element without being tainted. The allowed values