[whatwg] crossorigin property on iframe

Boris Zbarsky bzbarsky at MIT.EDU
Thu Apr 12 13:07:12 PDT 2012


On 4/12/12 3:49 PM, Adam Barth wrote:
> The seamless part might be workable, since that leaks information only
> from the document in question.  It's possible that there's a better
> mechanism than CORS for a child frame to opt into being seamless with
> its parent.

Yes, I agree that having a way for a child to opt into being seamless is 
desirable.  That doesn't have the problems direct DOM access does.

-Boris



More information about the whatwg mailing list