In my last post I gave an example of how JSON-P can provide a solution to the restrictions that the same-origin policy places on asynchronous requests. In the event when a developer wants to place an AJAX call between two different domains that she owns, JSON-P will allow this, but what if I want to allow others to access my content using AJAX? (more…)
Asynchronous HTTP requests have given web pages the ability to be more dynamic and interactive.
AJAX provides developers with the ability to perform an HTTP requests behind the scenes. However, for security reasons modern web clients maintain the same-origin policy. Unfortunately, this policy will only allow XMLHTTPRequests from the same domain name as the origin. (more…)