Simon Willison’s Weblog

CSSHttpRequest (via) Devious cross-domain Ajax hack that uses CSS for transport (@import rules with data URIs, but it still works in IE). Similar to JSONP but safer, since JSONP can cause arbitrary JavaScript to execute.

Posted 23rd October 2008 at 6:25 pm

Recent articles

Qwen2.5-Coder-32B is an LLM that can code well that runs on my Mac - 12th November 2024
Visualizing local election results with Datasette, Observable and MapLibre GL - 9th November 2024
Project: VERDAD - tracking misinformation in radio broadcasts using Gemini 1.5 - 7th November 2024

ajax 61 atimport 1 crossdomain 10 css 157 csshttprequest 1 javascript 688 json 141 jsonp 23