Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(56)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: chrome/common/extensions/docs/server2/templates/articles/xhr.html

Issue 10834130: Extensions Docs Server: Doc conversion script - SVN (Closed) Base URL: https://src.chromium.org/chrome/trunk/src/
Patch Set: Created 8 years, 4 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « chrome/common/extensions/docs/server2/templates/articles/whats_new.html ('k') | chrome/common/extensions/docs/server2/templates/intros/app_window.html » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 <div id="pageData-name" class="pageData">Cross-Origin XMLHttpRequest</div> 1 <h1>Cross-Origin XMLHttpRequest</h1>
2 2
3 <!-- BEGIN AUTHORED CONTENT --> 3
4 <p id="classSummary"> 4 <p id="classSummary">
5 Regular web pages can use the 5 Regular web pages can use the
6 <a href="http://www.w3.org/TR/XMLHttpRequest/">XMLHttpRequest</a> 6 <a href="http://www.w3.org/TR/XMLHttpRequest/">XMLHttpRequest</a>
7 object to send and receive data from remote servers, 7 object to send and receive data from remote servers,
8 but they're limited by the 8 but they're limited by the
9 <a href="http://en.wikipedia.org/wiki/Same_origin_policy">same origin policy</a> . 9 <a href="http://en.wikipedia.org/wiki/Same_origin_policy">same origin policy</a> .
10 Extensions aren't so limited. 10 Extensions aren't so limited.
11 An extension can talk to remote servers outside of its origin, 11 An extension can talk to remote servers outside of its origin,
12 as long as it first requests cross-origin permissions.</p> 12 as long as it first requests cross-origin permissions.</p>
13 13
(...skipping 137 matching lines...) Expand 10 before | Expand all | Expand 10 after
151 } 151 }
152 } 152 }
153 xhr.send(); 153 xhr.send();
154 </pre> 154 </pre>
155 <p> 155 <p>
156 Additionally, be especially careful of resources retrieved via HTTP. If your 156 Additionally, be especially careful of resources retrieved via HTTP. If your
157 extension is used on a hostile network, an network attacker (aka a <a 157 extension is used on a hostile network, an network attacker (aka a <a
158 href="http://en.wikipedia.org/wiki/Man-in-the-middle_attack">"man-in-the-middle" </a>) 158 href="http://en.wikipedia.org/wiki/Man-in-the-middle_attack">"man-in-the-middle" </a>)
159 could modify the response and, potentially, attack your extension. Instead, 159 could modify the response and, potentially, attack your extension. Instead,
160 prefer HTTPS whenever possible. 160 prefer HTTPS whenever possible.
161 </p> 161 </p>
162
163 <!-- END AUTHORED CONTENT -->
OLDNEW
« no previous file with comments | « chrome/common/extensions/docs/server2/templates/articles/whats_new.html ('k') | chrome/common/extensions/docs/server2/templates/intros/app_window.html » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698