Same Origin Policy limits you to making XHRs only to the host (same server, port, and protocol) where the Host Page was loaded ...
That means if your host page is https://foo.com/index.html and you load the javascript from http://cache.bar.com/some.js you still have to make your XHRs to https://foo.com -jason On Feb 12, 2009, at 1:50 PM, Ian Petersen wrote: > (I'm fuzzy on the details in the scenario that an > HTML page served from http://foo.com/ refers to a script served from > http://bar.com/--I don't know if XHRs are restricted to foo.com or > bar.com --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Google Web Toolkit" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/Google-Web-Toolkit?hl=en -~----------~----~----~----~------~----~------~--~---
