I've modified the us.metamath.org website to have CORS headers. This will enable web client-side applications can access its public data. Details below.
--- David A. Wheeler ==== For security reasons, normally applications that are run on a web browser (in JavaScript and/or Web Assembly) have very specific limitations on what they're allowed to do. In particular, they normally can only contact the site they came from (this is the "same-origin policy"). However, some JavaScript applications might want to, say, download the current set.mm database, even if they aren't being distributed from the us.metamath.org website. So I've tweaked the us.metamath.org website configuration to add Cross-Origin Resource Sharing (CORS) headers. These new headers allow *any* client-side web app to download the pages we publicly serve. E.g., to get the current version of set.mm, they can download: https://us.metamath.org/metamath/set.mm If you think they should be served from a different URL, please discuss! You can verify this change using: curl -i https://us.metamath.org/metamath/set.mm which will show these new HTTP headers: Access-Control-Allow-Origin: * Access-Control-Allow-Methods: GET, HEAD, OPTIONS Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range -- You received this message because you are subscribed to the Google Groups "Metamath" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/metamath/C17B7D28-2AA9-45C0-83A1-74B7844E4211%40dwheeler.com.
