Tweet
well, it's been a while since the browsers yanked "cross site scripting (XSS)" support due to security flaws, the browsers called this action the "Same origin policy", meaning that any scripting (ajax) type stuff is no longer allowed unless the client page and the script response are served from the same origin or domain.
there have been a few secure work-arounds developed, one is using json on the server side while called from within a <script> tag on the client page, another is to serve the "outside origin page" via a proxy,
I would like to be able to "select" (highlight) and record start & stop positions of selection from an external page (cross-site), does anyone have any idea if this can be done with the new browsers ?
Thanks!!
there have been a few secure work-arounds developed, one is using json on the server side while called from within a <script> tag on the client page, another is to serve the "outside origin page" via a proxy,
I would like to be able to "select" (highlight) and record start & stop positions of selection from an external page (cross-site), does anyone have any idea if this can be done with the new browsers ?
Thanks!!
Comment