hi ! in my eternal internal fight on whether to stay with mootools or jump to jQuery I've found on the jQuery documentation something that got my attention and this is that jQuery can ask for a JSON to a different domain, which is usually forbidden by the browser. I've seen some workarounds for cross-subdomain, but never cross-domain, ...
OK I have an application that loads product images using the < mx:Image /> tag and changing the source. the .SWF is on the http side of the website and the images are on the https side of the site. so at first I was getting this error: SecurityError: Error #2122: Security sandbox violation: Loader.content: http://www.MYDOMAIN.com...
Is there an equivalent to Internet Explorer's XDomainRequest in Firefox or any of the other browsers? I'd like to access a service/website outside of my domain. ...
Hello, I'm working on a AJAX application that pull data from a live website, I can't replicate the complete application on my local environment at the moment so in order to test if the Javascript code is working as expected I need to be able to bypass the same domain restriction on the browser (without making changes on the web server) a...
Coles Notes version: index.php?map_id=foo is loaded into iframe on www.not-my-domain.com. index sets SESSION['map_id'] = foo. Flash file tries to get SESSION['map_id'] thru Authenticate.php, but Authenticate.php has no values set for any SESSION varaibles. -- Only first-load, cross domain issue. Verbose: I have an index while where I...
I'm trying to post to the login form of an application on another subdomain of my site. It's a third party app that I don't have source access to. I know that you can't access most features of a cross-domain iframe because of same origin policy. All I need to access, however, is the URL that's been redirected to (via JavaScript) within ...
I created a silverlight component and a WCF service, both are communicating using a PollingDuplexHttpBinding to enable push and pull functionality. Works perfectly in our domain, however, a host outside our domain makes completly no calls to the webservice which is publicly exposed. clientaccesspolicy file is available and downloadabl...
I have signed up(paid) for Google site search. They have me a url of a sort of web service where I can send a query to it, it searches my site, and it returns XML of the search results. Well I am trying to load this XML via Ajax from a page on my site but I cannot. I can load from any of my pages on my domain so I am assuming it is becau...
I want to create a simple online poll application. I have created a backend in python that handles vote tracking, poll display, results display and admin setup. However, if I wanted a third party to be able to embed the poll in their website, what would be the recommended way of doing so? I would love to be able to provide a little ja...
I'm making a RESTful web service call in my JavaScript page and get the following warning: "This page is accessing information that is not under its control. This poses a security risk. Do you want to continue?" Now I've read up on this and am aware of the cross-domain, same origin policy. However, I don't get such warnings when I c...
I am doing an ASP.NET website for a client, who wants to make their reports page available via IFRAME on other "reseller" websites. The reseller websites are providing the same service with different branding. I need to avoid, where I can, requiring them to implement any code on their webserver to enable this - hence using iframes. A us...
While I realise that this is usually related to cross site scripting attacks, what I'm wondering is how can a session remain valid throughout multiple subdomains belonging to a single domain (example: a user logging in only once, and being able to access both subdomain1.domain.com and subdomain2.domain.com with the same session). I guess...
Until the cross-site XHR API becomes widely supported, what is the best way to make a cross-site request through JavaScript? I've been using iFrames, but those can get a bit messy. Is there a better way? (By better, I mean easier to work with.) Also, I'd prefer to see pure JavaScript code, not a framework such as jQuery, etc. I'm using ...
I am communicating to an external server via a URLLoader and receiving the following warning: Warning: Domain domain name does not specify a meta-policy. Applying default meta-policy 'master-only'. This configuration is deprecated. See http://www.adobe.com/go/strict_policy_files to fix this problem. The provided link r...
Cross-domain policies restricts downloading content from another domain: http://mysiteA.com <--NO--> http://myothersite.com But is downloading from the same domain via a different protocol allowed and would it work (can someone test) in everyday web browsers? http://mysite.com <--?--> https://mysite.com ...
I have two Active Directory domains, A and B. Users in domain A need to run an application on their desktops to view and manipulate a resource located on a server in domain B. Each user also has an account in domain B. Is it possible to impersonate each user's domain B identity to perform operations on the domain B resource programati...
I have a video player that loads progressive flv video from a server and applies a reflection to it. I do this by creating a bitmapData object and then drawing the video to it. This worked absolutely fine until we moved our content from testing server to Amazon S3. Now there is no reflection. Can anyone explain why this is happening and...
I have a site written in Delphi that needs to get data from a .NET web service. In order to consume the web service I am attaching to a .NET web site first that contains a wizard that the end user has to fill out, which in turn is then calling the web service in order to populate AJAX drop-down lists and to return data to the calling Del...
I am Curious about how cross domain authentication work? for example. To sign into Orkut.com you need to to sign in via Google.com. So the authentication happens at Google.com and it sets the cookie. So my question now is how does Orkut.com able to read this cookie or authenticate the user with no other information ? What can possibly g...
Hi, I'm trying to add my Silverlight application that lives on one subdomain to a web page in another subdomain. For some reason this just plain isn't working ... my Silverlight application is loaded as such in a page on http://subA.domain.com/somepage.html: <div id="silverlightControlHost"> <object data="data:application/x-silverl...