I want to make AJAX call to cross domain, and the cross domain being REST web service hosted on a remote host. Due to the restriction in the work environment and my personal interest, I am writing this in pure Javascript (not jQuery) with XHR. It works fine on IE11 but not Firefox/Chrome. The error on Firefix/Chrome is due to the same origin policy. Interestingly, if I open the REST based URL on those two browsers, the correct respond comes back without any block from the same orgin policy. What is the difference between making AJAX call and opening it in browser when it comes to the restriction of the same origin policy? I came across to CORS, but withCredentials won’t help. I cannot modify browser setting due to the restriction of the work environment. My purpose is to make cross browser compatibility if possible. Thank you!
Asked
Active
Viewed 49 times
0
-
https://stackoverflow.com/a/3506306/8016771 || http://www.ajax-cross-origin.com/how.html || https://www.sencha.com/forum/showthread.php?299915-How-to-make-an-ajax-request-cross-origin-CORS take a look at those – JeanPaul98 Jan 11 '18 at 02:16
-
Thanks for response. I came across to JSONP time to time. The problems of using JSONP are (1) it has known vulnerability and (2) no native Javascript samples. All I find is jQuery samples. What I don't understand is that I can access to REST based URL on the browser but AJAX call to the same URL gets blocked. I might have to use WireShark and check the behavior difference.. – ce526 Jan 11 '18 at 07:01