On 10/8/07, Andreas Junghans <[EMAIL PROTECTED]> wrote: > The MIME type doesn't matter here - the Script transport just works > differently than the other transports (and it has to because of > security limitations).
Yeah, duh. :-) For some reason, I forgot he was using Script transport, although the context should have made it obvious. > > @Derrell: I would be very interested in the other transport method > you mentioned in this thread (something about fragment identifiers). > While Script transport is quite usable, another alternative would be > nice. However, if it allows you to access arbitrary content from > other servers (without having to prepare these servers in any way), > it would actually be a security problem that should be fixed in the > browser (at least if cookies are sent to the server). I believe that the security problem is avoided, but I'm not yet entirely sure of the best way to implement this. I started to look at and think about it and I believe it can be useful for us. If you're interested, have a look at this blog entry: http://tagneto.blogspot.com/2006/06/cross-domain-frame-communication-with.html and the sample application here: http://www.tagneto.org/blogcode/xframe/ui2.html Derrell ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ qooxdoo-devel mailing list qooxdoo-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/qooxdoo-devel
