1.0.2-0 • Published 4 years ago

cross-domain-request v1.0.2-0

Weekly downloads
3
License
MIT
Repository
github
Last release
4 years ago

Cross-domain requests without CORS-support 🏓

Do you need to make an request (POST or GET) from browser to external resource without CORS?

If you don't have an access for requested resource and not able to setup right CORS policy, use jsonp or make postMessage transport – that simple, lightweight (2kb) and zero-dependency library could help you.

You could make ajax-like cross-domain request, but without receiving the response, because of browser's XSS-protection.

Example:

import CrossDomainRequest from 'cross-domain-request'

const data = {
  foo: 'bar'
}
CrossDomainRequest('https://example.com/submit', data)

Parameters:

CrossDomainRequest(url, data, options)
  • url (string) - requested url for submit data;
  • data (Object);
  • options (Object) - options with method, eg GET ({ method: 'POST' } by default);

How it works and what's happened under the hood:

  • Make a hidden form;
  • Make an iframe and connect with the form by target attribute for prevent reload/open new browser tab;
  • Fill the form data and submit to passed url, but with target page won't be reloaded and result will be in the iframe;
  • Clean all artifacts.

TODO:

  • custom function for serialize nested data
  • tests
  • ability to pass FormData

References

CORScross domain requestpost request
@everything-registry/sub-chunk-1414@zalastax/nolb-cros
1.0.2-0

4 years ago

1.0.0

4 years ago