The same origin policy  I wanted to make a community wiki regarding HTML/JS same-origin policies to hopefully help anyone searching for this topic. This is one of the most searched-for topics on SO and there is no consolidated wiki for it so here I...

I would like to manipulate the HTML inside an iframe using jQuery.  I thought I'd be able to do this by setting the context of the jQuery function to be the document of the iframe, something like:  $(function(){ //document ready     $('some...

I am loading an <iframe> in my HTML page and trying to access the elements within it using Javascript, but when I try to execute my code, I get the following error:  SecurityError: Blocked a frame with origin "http://www.<domain>.co...

How does the Same Origin Policy apply to the following two domains?  http://server1.MyDomain.com  http://server2.MyDomain.com  Can I run JS on a page hosted on server1, if the content is retreived from server2?  edit according to Daniel's answer...

I don't really get Access-Control-Allow-Origin and CORS.  If I allow request from any domain to my page, does that imply any security issues for my page?  I always thought, that SOP ensures, that there can't run any script on a page, which re...

I am trying to intercept links clicked on a page including those inside an iframe.  This is the code that I have but it is not working.  Any ideas what I need to do?  $("#container").delegate('a', 'click', function(e){  //do s...

I've made a component for an SAP solution (whatever) that is embedded into a report through an iframe. After I deployed the report on an SAP plateform (BO), I got this error (on Chrome, but does not work on IE or FF either):  Uncaught SecurityErr...

I've tried reading up about this and not really sure where to start, so hoping somebody will be able to point me in the right direction.  Basically I'm trying to use jQuery ajax to read an external website and retrieve a list of links from it...

I keep fighting with strange limitations when developing for the web. One of them is the same-origin limitation for AJAX requests and I'm asking myself if instead of blocking requests to cross-domain resources wouldn't have been simpler to ju...

I came across a problem using jQuery to retrieve an RSS feed located on an external domain. It was working in Safari but other browsers would error because of Same Origin Policy restrictions (which are also documented about the $.ajax() function).  W...