Is there a cross domain policy restriction for subdomains?
If I have an application on paint.xxxx.com
which is manipulating images from image.xxxx.com
, are there any cross domain problems?
I'm asking these questions, because I'm considering putting a proxy on a subdomain.
Sub-domains are considered different and will fail the Same Origin Policy unless both sub-domains declare the same document. domain DOM property (and even then, different browsers behave differently).
Yes you have to enable it. You have to send CORS allow headers from server side to your browser. This is because a subdomain counts as a different origin.
Websites that have the combination of the same scheme, hostname, and port are considered "same-origin". Everything else is considered "cross-origin".
A subdomain name is a piece of additional information added to the beginning of a website's domain name. It allows websites to separate and organize content for a specific function — such as a blog or an online store — from the rest of your website.
yes the cross domain restriction applies for subdomains.
The solution is to put
document.domain = "example.com" ; // whatever your domain name is
in the top of the js file(s) for both the parent domain and the child domain
Google Document.domain and cross site and there should be a better explanation but I've had the same issue and that is what worked for me.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With