The W3C Voice Browser, Web APIs, and Web Application Formats (WAF) Working Groups hav

The W3C Voice Browser, Web APIs, and Web Application Formats (WAF) Working Groups have posted a new working draft of Cross-Origin Resource Sharing (formerly Access Control for Cross-site Requests). According to the draft, "This document defines a mechanism to enable client-side cross-origin requests. Specifications that want to enable cross-origin requests in an API they define can use the algorithms defined by this specification. If such an API is used on http://example.org resources, a resource on http://hello-world.example can opt in using the mechanism described by this specification (e.g., specifying Access-Control-Allow-Origin: http://example.org as response header), which would allow that resource to be fetched cross-origin from http://example.org." In other words, Bob's browser can download a JavaScript program from Alice's server. The JavaScript served from Alice's computer but running in Bob's browser can now download more data from Eve's server if Eve allows it. More...

Read the Complete News Item on Cafe con Leche... (http://www.cafeconleche.org/#March_20_2009_28061)