tags:

views:

24

answers:

2
Q: 

create a widget to retrieve and display data via ajax

I tried the classic ajax approach, but that throws an access denied javascript exception when trying to add a script stored on another domain. Now, I'm sure this is possible since google populates google ads via js only; so does twitter, and the list can continue.

How I thought of it so far:

<div id="divId"></div>
<script type="text/javascript" src="http://mysite.com/script.js"&gt;&lt;/script&gt;

The script in script.js should have changed the innerHTML attribute of the div above. Instead, I get the following message in fireBug: Access to restricted URI denied code: 1012

I googled around a bit but only found workarounds that are useless, like php proxies and such, whereas I want this widget to be copy-pasted into other peoples sites, blogs, forums, etc..

Thanks in advance for any helpful replies. :)

+1  A: 

The behavior that you are seeing is intended and there for security reasons. You wouldn't want a third party script to make any changes to your page as that can be exploited heavily.

Instead, give your users a JavaScript snippet to embed on their page.

<script>
    // do stuff here
</script>

Note that inside this snippet you can create a script tag dynamically, set the src attribute and load the actual JavaScript. This snippet that your users embed on their page has access to the entire DOM, but the script loaded externally does not.

Here's an example of the profile widget that Twitter gives out to embed on web pages:

<!-- external js, can't access or change the DOM -->
<script src="http://widgets.twimg.com/j/2/widget.js"&gt;&lt;/script&gt;
<!-- local js, does that -->
<script>
new TWTR.Widget({
  version: 2,
  ..
  ..
}).render().setUser('hulu').start();
</script>

The first script tag loads the library, while the second one which actually manipulates the page is added as code directly.

Anurag  2010-08-16 19:11:52
The problem isn't that I cannot manipulate DOM objects on the page. I can do that.The thing is the browser doesn't let me send an ajax http request to pages outside the current domain were the main page is.That's what "Access to restricted URI denied code: 1012" refers to.And I need the ajax http request to get data from the database.
devland  2010-08-17 11:08:15
A: 

I finally found a solution that doesn't involve ajax. I simply use

<div id="objectId"></div>
<script type="text/javascript" src="http://mysite.com/getAndDisplayData.php"&gt;&lt;/script&gt;
<script type="text/javascript">getAndDisplayData();</script>

And in getAndDisplayData.php I generate a JS script that will create my widget inside the div above. The php file also connects to the database and retrieves all required widget data. Apparently this is how google ads works, though I am not sure. It is certain though that they don't use ajax.

devland  2010-08-17 11:47:09

related questions

How do HttpOnly cookies work with AJAX requests?
ASP.NET JavaScript Callbacks Without Full PostBacks?
How to set encoding in .getJSON JQuery
Suggestions on Ajax development environment for PHP
Need to test an ajax timeout condition
XmlHttpRequest return values
Adobe AIR: Handling JSON objects from server
Best framework for implementing iGoogle or pageflakes (ASP.NET)
Is there some way to PUSH data from web server to browser?
Are there reasons not to use JSONP for AJA~X requests?
Minimize javascript HTTP calls from AjaxControlToolkit controls?
Only accepting certain ajax requests from authenticated users
ASP.net AJAX Drag/Drop?
Scrolling Overflowed DIVs with JavaScript
Speeding up an ASP.Net Web Site or Application
ICE Faces fileInput file path and file name properties
Ajax project suggestion.
Graphing JavaScript Library
Debugging: IE6 + SSL + AJAX + post form = 404 error
Best ajax library for Sharepoint
Can ASP.NET AJAX partial rendering work inside a SharePoint 2007 application page?
What is Progressive Enhancement?
Tracking state using ASP.NET AJAX / ICallbackEventHandler
Easy way to AJAX WebControls
Modify Address Bar URL in AJAX App to Match Current State