W3C home > Mailing lists > Public > whatwg@whatwg.org > April 2012

[whatwg] crossorigin property on iframe

From: Ojan Vafai <ojan@chromium.org>
Date: Thu, 12 Apr 2012 12:30:00 -0700
Message-ID: <CANMdWTvH3h2+pLZ_zKvhAtXkjBP528gjvWx=pEH0R35xgqXw1g@mail.gmail.com>
We should add a crossorigin property on iframe that causes the request to
use CORS. If it's an allowed cross-domain request, then the page should
have access to the DOM of the frame.

Also, seamless should work (assuming the CORS request succeeded of
course). One tricky thing here is that seamless needs to stop working if
the frame is navigated to a different origin to which it does not have CORS
access.

Ojan
Received on Thursday, 12 April 2012 12:30:00 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 30 January 2013 18:48:07 GMT