Sure it is. The same-origin rule that holds the whole web security model together is entirely a prop...

tptacek • today at 5:55 AM • 1 reply • view on HN

Sure it is. The same-origin rule that holds the whole web security model together is entirely a property of browser behavior.

louiskottmann • today at 6:10 AM

That's indeed a good example of prior full trusting of the browser by the server.

alt Hacker News