https://issues.apache.org/bugzilla/show_bug.cgi?id=51223
--- Comment #2 from Michiel de Jong <[email protected]> --- Mark Nottingham: > browsers work without them present on it Maybe I misunderstood your point, but I was not able to reproduce that finding. My steps: * Run this node script on test.com: ````js require('http').createServer(function(req, res) { res.writeHeader(304); res.end(); }).listen(8080); ```` * Visit http://example.com/ and paste this into the console: ````js xhr = new XMLHttpRequest(); xhr.open('GET', 'http://test.com:8080/', true); xhr.send(); ```` Firefox on Ubuntu reports: Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at http://test.com:8080/. This can be fixed by moving the resource to the same domain or enabling CORS. Chromium on Ubuntu reports: XMLHttpRequest cannot load http://test.com:8080/. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://example.com' is therefore not allowed access. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
