mina-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Niklas Gustavsson <nik...@protocol7.com>
Subject [Vysper] BOSH allowed cross domains
Date Tue, 27 Jul 2010 09:00:36 GMT

We currently handle the Flash based crossdomain.xml and the upcoming
Access-Control-Allow-Origin in different ways in our code. How about,
instead of setting a path to a crossdomain.xml file, we allow the user
to provide a list of allowed domains. That way, we can create a
response to /crossdomain.xml on the fly as well as correctly set
Access-Control-Allow-Origin. Also, I think we should default both of
these to only allow access from the domain the BoshServlet runs on.

If this sounds good, I'll go ahead and make the changes.


View raw message