Call JavaScript function from remote server

Question

I tried to call JavaScript function exist on some server(server1) from another server(server2) and I got this error:

Unsafe JavaScript attempt to access frame with URL https://server1/ from frame with URL https://server2/ . Domains, protocols and ports must match.

I used JSP, Java, JavaScript and tomcat7, is there any way to solve this problem? any help will be appreciated.

Why do you want to do this? If you only need some data from the other server, there is ajax for that. — Czechnology, Mar 22 '11 at 10:14
You're trying to call a JS function inside of an iframe? Am I understanding correctly? — Michael McTiernan, Mar 22 '11 at 10:16
why dont you include the .js file from the remote server into the servlet of your server? — Sujit Agarwal, Mar 22 '11 at 10:16

score 2 · Answer 1 · edited May 23 '17 at 11:51

2

Yes, must add a cross-origin rule to the header of your javascript file, which allows access from your other server.

Otherwise, your Browser doesn´t let you do that.

It should tell you how to do it.

edited May 23 '17 at 11:51

Community

answered Mar 22 '11 at 10:15

Van Coding

thanks for answer, I tried to put this in the header response.addHeader("Access-Control-Allow-Origin","*"); but it didn't solve the problem. how can I add it? do you have any useful links please. – user670934 Mar 22 '11 at 10:28
This only works for enabling CORS (cross domain resource sharing) - not for enabling cross domain access between windows. – Sean Kinsey Mar 22 '11 at 10:44

score 0 · Answer 2 · answered Mar 22 '11 at 10:43

0

Take a look at easyXDM - it provides an RPC feature allowing you to call methods across the Same Origin Policy.

Take a look at one of the demo's here

answered Mar 22 '11 at 10:43

Sean Kinsey

score 0 · Answer 3 · answered Mar 22 '11 at 10:55

As described you are subject to the Same Origin Policy, this is designed to protect users. Google have a good write-up: http://code.google.com/p/browsersec/wiki/Part2.

There are several typical approaches to working around this:

jquery has a getJson or jsonp type of function. most other js libs have something similar. They use a dynamic Script tag, suitable for GET requests from other domains.
Create a servlet on domain1 that proxies to domain2 - allows unrestricted HTTP methods and use of XmlHTTPRequest.

There are improvements coming, like cross document messaging in HTML5

3 Answers3