Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

What are the integrity and crossorigin attributes?

Tags:

html

cors

cross-domain

subresource-integrity

Bootstrapcdn recently changed their links. It now looks like this:

<link href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.5/css/bootstrap.min.css"  rel="stylesheet"  integrity="sha256-MfvZlkHCEqatNoGiOXveE8FIwMzZg4W85qfrfIFBfYc= sha512-dTfge/zgoMYpP7QbHy4gWMEGsbsdZeCXz7irItjcC3sPUFtf0kuFbDz/ixG7ArTxmDjLXDmezHubeNikyKGVyQ=="  crossorigin="anonymous">

What do the integrity and crossorigin attributes mean? How do they affect the loading of the stylesheet?

like image 789
New user Avatar asked Aug 16 '15 20:08

New user

People also ask

What is the integrity attribute?

The integrity attribute allows a browser to check the fetched script to ensure that the code is never loaded if the source has been manipulated. Subresource Integrity (SRI) is a W3C specification that allows web developers to ensure that resources hosted on third-party servers have not been altered.

What is the crossorigin attribute?

The crossorigin attribute sets the mode of the request to an HTTP CORS Request. Web pages often make requests to load resources on other servers. Here is where CORS comes in. A cross-origin request is a request for a resource (e.g. style sheets, iframes, images, fonts, or scripts) from another domain.

What is CSS integrity?

The integrity attribute is used to give permission to the Browser to check the fetched script to make ensure the source code is never loaded. It is used to check that whether the third party has been altered the resource or not.

How do you use Subresource integrity?

Using Subresource Integrity You use the Subresource Integrity feature by specifying a base64-encoded cryptographic hash of a resource (file) you're telling the browser to fetch, in the value of the integrity attribute of any <script> or <link> element.

1 Answers

Both attributes have been added to Bootstrap CDN to implement Subresource Integrity.

Subresource Integrity defines a mechanism by which user agents may verify that a fetched resource has been delivered without unexpected manipulation Reference

Integrity attribute is to allow the browser to check the file source to ensure that the code is never loaded if the source has been manipulated.

Crossorigin attribute is present when a request is loaded using 'CORS' which is now a requirement of SRI checking when not loaded from the 'same-origin'. More info on crossorigin

More detail on Bootstrap CDNs implementation

like image 129
jim.taylor.1974 Avatar answered Sep 20 '22 07:09

jim.taylor.1974
Sign in to Comment

Related questions

HTML5 form required attribute. Set custom validation message?
Why does the jquery change event not trigger when I set the value of a select using val()?
How to add default value for html <textarea>? [closed]
CSS Display an Image Resized and Cropped
Line break in HTML with '\n'
How do you create a hidden div that doesn't create a line break or horizontal space?
How to create a <style> tag with Javascript?
When do items in HTML5 local storage expire?
Turn off iPhone/Safari input element rounding
How to set a value to a file input in HTML?
CSS technique for a horizontal line with words in the middle
How do I add a tool tip to a span element?
jQuery removeClass wildcard
CSS selector for text input fields?
href="tel:" and mobile numbers
What is the meaning of polyfills in HTML5?
What is the correct syntax of ng-include?
Slide right to left?
How to ignore HTML element from tabindex?
CSS background image to fit width, height should auto-scale in proportion

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!