May 5, 2017

[HDGEM] CORS defines a way in which a browser and server can interact to determine whether or not it is safe to allow the cross-origin request.

Cross-origin resource sharing (CORS) is a mechanism that allows restricted resources (e.g. fonts) on a web page to be requested from another domain outside the domain from which the first resource was served. A web page may freely embed cross-origin images, stylesheets, scripts, iframes, and videos. Certain "cross-domain" requests, notably Ajax requests, however are forbidden by default by the same-origin security policy.

CORS allows for more freedom and functionality than purely same-origin requests, but is more secure than simply allowing all cross-origin requests. It is a recommended standard of the W3C.

Posted By Blogger to HDGEM at 5/05/2017 03:21:00 PM