Adam, Without CORS, the request should go through without cookies, right? -Nick
On Wed, Oct 21, 2009 at 1:29 PM, Matias Pelenur <[email protected]>wrote: > Ah, no, I was not. I didn't even know what it > was<http://www.w3.org/TR/access-control/> > . > > > On Wed, Oct 21, 2009 at 4:24 PM, Nick Baum <[email protected]> wrote: > >> Matias, were you using CORS? >> -Nick >> >> >> On Wed, Oct 21, 2009 at 10:02 AM, Adam Barth <[email protected]> wrote: >> >>> On Wed, Oct 21, 2009 at 9:59 AM, Nick Baum <[email protected]> >>> wrote: >>> > Since when do we allow cross-site XHR from content scripts? >>> >>> We support cross-site XHR for the entire web platform using CORS since >>> Chrome 3 (I believe). >>> >>> > And is XHR to a different origin supposed to work without cookies? >>> >>> It is supposed to have cookies. The server has to opt in using various >>> headers. >>> >>> Adam >>> >> >> > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Chromium-extensions" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/chromium-extensions?hl=en -~----------~----~----~----~------~----~------~--~---
