Same-origin policy workaround using document.domain in Javascript Same-origin policy workaround using document.domain in Javascript javascript javascript

Same-origin policy workaround using document.domain in Javascript


javascript same-origin-policy

document.domain allows the communication between frames/iframes. Not XHR.

<body><iframe src="http://bar.example.com/"></iframe><script>    document.domain = 'example.com';    var ifr = document.getElementsByTagName('IFRAME')[0];    ifr.onload = function(e){        //will log the string "BODY" in the console        console.log(ifr.contentWindow.document.body.tagName);    };</script></body>

If you remove the line with document.domain, reading the content of the contentWindow will throw the Same Origin Policy error.

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last