C 知道

消息
创作中心
douzhixun8393 2014-12-11 04:32
浏览 457
已采纳

http://www.website.com和http://website.com之间有什么区别?

consider i have created a website and have a web directory like this...

1.index.php

2.ajax.php

In index.php coding.. i use 

<html>
....
<base href="http://website.com">
....
....
<script> <!-- using jquery -->
.... 
$.ajax({
        url:'ajax.php',
        type:'POST',
        data:{ 'variable': value  },
        success: function(res){
        ....
        ....    
        }
    });  
....
</script>

when i run above code it works fine... but when i add "www" in base element href attribute, like this...

<base href="http://www.website.com">

its not working why?, it show error like this in javascript..

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at http://example.com/ajax.php. This can be fixed by moving the resource to the same domain or enabling CORS.

now i have question?

  1. what is the real problem?

  2. what should i do to make both base element code should run?

  3. what is CORS enabling?

  4. if i enable CORS, anyone from other website can able to access my site?

I would appreciate if some one could assist me, thanks in advance...

展开全部

  • 写回答

2条回答 默认 最新

  • douduan5753 2014-12-11 04:37
    关注

    what is the difference between http://www.website.com and http://website.com?

    They have different hostnames and are (technically) different websites. They could host different content, but probably don't.

    what is the real problem?

    Different hostnames are different origins. Browsers do not let JavaScript running in a page on one origin read content from another origin unless permission is given with CORS.

    what should i do to make both base element code should run?

    Pick one of the two hostnames to be canonical. Configure the server so the non-canonical one issues a 301 HTTP redirect to the canonical one.

    While you are at it, stop using <base>. It is far more pain than it is worth, and almost everything good about it can be achieved by using URLs that are relative to the server root (i.e. URLs that begin with a / character).

    what is CORS enabling?

    Configuring the server to send HTTP headers that give the browser permission to share your site's data with other sites.

    See MDN for more.

    if i enable CORS, anyone from other website can able to access my site?

    You can specify global access or limit it to specific origins.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)
编辑
预览

报告相同问题?

手机看
程序员都在用的中文IT技术交流社区

程序员都在用的中文IT技术交流社区

专业的中文 IT 技术社区,与千万技术人共成长

专业的中文 IT 技术社区,与千万技术人共成长

关注【CSDN】视频号,行业资讯、技术分享精彩不断,直播好礼送不停!

关注【CSDN】视频号,行业资讯、技术分享精彩不断,直播好礼送不停!

 客服 返回
顶部