Lambda makes CORS even more pointless. A 10 line proxy with rotating IP addresses is so cheap it’a practically free.
-
-
Replying to @mikeal
CORS is the web dev version of the TSA: Security Theater. It kinda feels like it’s accomplishing something, but if you take a frank look it’s just a frustrating waste of time.
4 replies 3 retweets 22 likes -
Replying to @AdamRackis @mikeal
I don't understand: I thought CORS was mainly about preventing malicious scripts from stealing data from localhost and intranets, which it does just fine. It's not much of a burden to stick a * header on APIs for which that isn't a concern.
2 replies 1 retweet 5 likes -
Malicious scripts will run just fine if loaded from a <script> tag. What does CORS prevent in practice, exactly?
3 replies 0 retweets 0 likes
You’re misunderstanding what CORS does. See https://annevankesteren.nl/2012/12/cors-101 ….
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
JavaScript, HTML, CSS, HTTP, performance, security, Bash, Unicode, i18n, macOS.