[whatwg] Enhancement request: change EventSource to allow cross-domain access

Jonas Sicking jonas at sicking.cc
Wed Jun 1 15:23:07 PDT 2011

On Wed, Jun 1, 2011 at 11:23 AM, ilya goberman <goberman at msn.com> wrote:
> Can EventSource be enhanced to support cross-domain requests via "Access-Control-Allow-Origin" header, just like it is already done for XHR? See http://en.wikipedia.org/wiki/XMLHttpRequest#Cross-domain_requests.
> I filed a request with WebKit bugzilla and they suggested to send it to you: https://bugs.webkit.org/show_bug.cgi?id=61862
> The rationale and use cases are exactly the same as for XHR: it can be useful to access different domains.
> Is support for EventSource cross domains planned at all? It is supposedly one of the most requested features, but I do not know how it is tracked.

I absolutely think we should do this. I was in fact quite surprised to
find that this wasn't already the case.

Getting event streams from other sites seems like a prime use case for

We should probably consider adding the ability to specify if you want
the request to happen with or without credentials (and default to the
safe option which is without credentials).

/ Jonas

More information about the whatwg mailing list