Standards
Standards

Understand the various specifications, their maturity levels on the web standards track, and their adoption.
Explore web standards
Groups
Groups

A variety of groups develop Web Standards, guidelines, or supporting materials.
About W3C groups
Get involved
Get involved

W3C works at the nexus of core technology, industry needs, and societal needs.
Find ways to get involved
Resources
Resources

Master Web fundamentals, use our developer tools, or contribute code.
Learn from W3C resources
News and events
News and events

Recent content across news, blogs, press releases, media; upcoming events.
Follow news and events
About
About

Understand our values and principles, learn our history, look into our policies, meet our people.
Find out more about us
Search
My account

Last Call: Cross-Origin Resource Sharing

Author(s) and publish date

Published:: 3 April 2012

The Web Application Security Working Group has published a Working Draft of Cross-Origin Resource Sharing. This document, produced jointly with the Web Applications Working Group, defines a mechanism to enable client-side cross-origin requests. Specifications that enable an API to make cross-origin requests to resources can use the algorithms defined by this specification. If such an API is used on http://example.org resources, a resource on http://hello-world.example can opt in using the mechanism described by this specification (e.g., specifying Access-Control-Allow-Origin: http://example.org as response header), which would allow that resource to be fetched cross-origin from http://example.org. Comments are welcome through 1 May 2012. Learn more about the Rich Web Client Activity.

Related RSS feed

Subscribe to our news feed