{"json_modified": "2016-07-27T08:24:38.557883", "uuid": "c97ca639-0d2a-4183-85a6-ce8785c226b2", "title": "Control de acceso HTTP (CORS)", "url": "/es/docs/Web/HTTP/Access_control_CORS", "tags": [], "translations": [{"uuid": "f21d3550-c585-43f2-85b8-ee2ddf5bbc60", "title": "HTTP \u30a2\u30af\u30bb\u30b9\u5236\u5fa1 (CORS)", "url": "/ja/docs/HTTP_access_control", "tags": ["Firefox 3.5", "NeedsBrowserAgnostic", "Same-origin policy", "Security", "XMLHttpRequest", "HTTP", "AJAX"], "summary": "\u3042\u308b\u30ea\u30bd\u30fc\u30b9\u304c\u3001\u59cb\u3081\u306b\u81ea\u8eab\u3092\u63d0\u4f9b\u3057\u305f\u30c9\u30e1\u30a4\u30f3\u3068\u306f\u7570\u306a\u308b\u30c9\u30e1\u30a4\u30f3\u306e\u30ea\u30bd\u30fc\u30b9\u3092\u8981\u6c42\u3059\u308b\u3068\u304d\u3001\u305d\u306e\u30ea\u30bd\u30fc\u30b9\u306f\u30af\u30ed\u30b9\u30aa\u30ea\u30b8\u30f3 HTTP \u30ea\u30af\u30a8\u30b9\u30c8\u3092\u884c\u3044\u307e\u3059\u3002\u4f8b\u3048\u3070 https://domain-a.com \u304b\u3089\u8aad\u307f\u8fbc\u307e\u308c\u305f HTML \u30da\u30fc\u30b8\u304c\u3001https://domain-b.com/image.jpg \u306b\u5bfe\u3057\u3066 <img> src \u3067\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u884c\u3046\u5834\u5408\u3067\u3059\u3002\u4eca\u65e5\u306e Web \u4e0a\u3067\u306f\u3001\u591a\u304f\u306e\u30da\u30fc\u30b8\u304c CSS \u30b9\u30bf\u30a4\u30eb\u30b7\u30fc\u30c8\u3084\u753b\u50cf\u3001\u30b9\u30af\u30ea\u30d7\u30c8\u3068\u3044\u3063\u305f\u30ea\u30bd\u30fc\u30b9\u3092\u5225\u306e\u30c9\u30e1\u30a4\u30f3\u304b\u3089\u8aad\u307f\u8fbc\u3093\u3067\u3044\u307e\u3059\u3002", "localization_tags": [], "locale": "ja", "last_edit": "2016-05-18T23:24:07", "review_tags": []}, {"uuid": "88713266-019a-4db1-994d-c4a448616e96", "title": "HTTP access control (CORS)", "url": "/en-US/docs/Web/HTTP/Access_control_CORS", "tags": ["Firefox 3.5", "NeedsBrowserAgnostic", "Same-origin policy", "Security", "XMLHttpRequest", "HTTP", "AJAX"], "summary": "Technical review completed.", "localization_tags": [], "locale": "en-US", "last_edit": "2016-07-07T01:50:06", "review_tags": []}, {"uuid": "354f1d55-2ad3-4ab1-a931-7dde5782d9a9", "title": "HTTP access control (CORS)", "url": "/zh-TW/docs/HTTP/Access_control_CORS", "tags": [], "summary": "\u6240\u8b02\u8de8\u7ad9HTTP\u8acb\u6c42(Cross-site HTTP request)\u662f\u6307\u767c\u51fa\u8acb\u6c42\u6240\u5728\u7db2\u57df\u4e0d\u540c\u65bc\u8acb\u6c42\u6240\u6307\u5411\u4e4b\u7db2\u57df\u7684HTTP\u8acb\u6c42\uff0c\u4f8b\u5982\u7db2\u57dfA(https://domaina.example)\u7684\u7db2\u9801\u8f09\u5165\u4e00\u500b<img>\u5143\u7d20\u5411\u7db2\u57dfB(https://domainb.foo)\u8acb\u6c42\u5f71\u50cf\u8cc7\u6e90(https://domainb.foo/image.jpg)\u3002\u9019\u7a2e\u4f5c\u6cd5\u5728\u73fe\u4eca\u5404\u7db2\u9801\u76f8\u7576\u5e38\u898b\uff0c\u7db2\u9801\u5e38\u5e38\u6703\u8f09\u5165\u5176\u4ed6\u7db2\u7ad9\u8cc7\u6e90\uff0c\u50cf\u662fCSS\u6a23\u5f0f\u8868\u3001\u5f71\u50cf\u3001\u7a0b\u5f0f\u78bc\u7b49\u7b49\u8cc7\u6e90\u3002", "localization_tags": [], "locale": "zh-TW", "last_edit": "2015-03-23T23:34:24", "review_tags": []}, {"uuid": "be5dccb3-0b72-46c6-8520-1c90638475b2", "title": "Contr\u00f4le d'acc\u00e8s HTTP", "url": "/fr/docs/HTTP/Access_control_CORS", "tags": ["Firefox 3.5", "Same-origin policy", "XMLHttpRequest", "HTTP", "AJAX", "cross-site", "S\u00e9curit\u00e9", "Securit\u00e9"], "summary": "Les requ\u00eates HTTP de type Cross-site sont des requ\u00eates pour des ressources localis\u00e9es sur un domaine diff\u00e9rent de celui \u00e0 l'origine de la requ\u00eate. Par exemple, une ressource charg\u00e9e depuis le domaine A (https://domaina.example) comme une page HTML, effectue une requ\u00eate pour\u00a0une ressource provenant du domaine B (https://domainb.foo), comme une image,\u00a0en utilisant la balise\u00a0img (https://domainb.foo/image.jpg).\u00a0 C'est r\u00e9guli\u00e8rement le cas aujourd'hui sur le web \u2014 des pages chargent\u00a0un nombre\u00a0de ressources \u00e0 la mani\u00e8re Cross-site, en ce inclus des feuilles de style (CSS), des images, des\u00a0scripts, et d'autres ressources.", "localization_tags": [], "locale": "fr", "last_edit": "2015-05-04T02:28:49", "review_tags": []}, {"uuid": "530d2872-5ade-4f78-888c-6f567bfb58dd", "title": "HTTP\u8bbf\u95ee\u63a7\u5236(CORS)", "url": "/zh-CN/docs/Web/HTTP/Access_control_CORS", "tags": [], "summary": "\u8de8\u7ad9 HTTP \u8bf7\u6c42(Cross-site HTTP request)\u662f\u6307\u53d1\u8d77\u8bf7\u6c42\u7684\u8d44\u6e90\u6240\u5728\u57df\u4e0d\u540c\u4e8e\u8be5\u8bf7\u6c42\u6240\u6307\u5411\u8d44\u6e90\u6240\u5728\u7684\u57df\u7684 HTTP \u8bf7\u6c42\u3002\u6bd4\u5982\u8bf4\uff0c\u57df\u540dA(https://domaina.example)\u7684\u67d0 Web \u5e94\u7528\u7a0b\u5e8f\u4e2d\u901a\u8fc7<img>\u6807\u7b7e\u5f15\u5165\u4e86\u57df\u540dB(https://domainb.foo)\u7ad9\u70b9\u7684\u67d0\u56fe\u7247\u8d44\u6e90(https://domainb.foo/image.jpg)\uff0c\u57df\u540dA\u7684\u90a3 Web \u5e94\u7528\u5c31\u4f1a\u5bfc\u81f4\u6d4f\u89c8\u5668\u53d1\u8d77\u4e00\u4e2a\u8de8\u7ad9 HTTP \u8bf7\u6c42\u3002\u5728\u5f53\u4eca\u7684 Web \u5f00\u53d1\u4e2d\uff0c\u4f7f\u7528\u8de8\u7ad9 HTTP \u8bf7\u6c42\u52a0\u8f7d\u5404\u7c7b\u8d44\u6e90\uff08\u5305\u62ecCSS\u3001\u56fe\u7247\u3001JavaScript \u811a\u672c\u4ee5\u53ca\u5176\u5b83\u7c7b\u8d44\u6e90\uff09\uff0c\u5df2\u7ecf\u6210\u4e3a\u4e86\u4e00\u79cd\u666e\u904d\u4e14\u6d41\u884c\u7684\u65b9\u5f0f\u3002", "localization_tags": [], "locale": "zh-CN", "last_edit": "2016-05-12T21:13:19", "review_tags": []}, {"uuid": "ced8744e-a9ed-497c-9305-76ab5f4f6e05", "title": "HTTP \uc811\uadfc \uc81c\uc5b4 (CORS)", "url": "/ko/docs/Web/HTTP/Access_control_CORS", "tags": [], "summary": "\ud55c \uc790\uc6d0\uc774 \uc790\uc2e0\uc774 \ud638\uc2a4\ud305\ub418\ub294 \ucd9c\ucc98(Origin Server)\uc640 \ub2e4\ub978 \ucd9c\ucc98\uc758 \uc790\uc6d0\uc744 \uc694\uccad\ud558\uac8c \ub420 \ub54c, Cross-origin HTTP \uc694\uccad\uc774 \ubc1c\uc0dd\ud55c\ub2e4. \ud55c \uac00\uc9c0 \uc608\ub85c, https://domain-a.com\uc5d0 \uc788\ub294 HTML \ubb38\uc11c\uc5d0\uc11c\u00a0<img> src\u00a0\uc18d\uc131\uc744 \ud1b5\ud574\u00a0https://domain-b.com/image.jpg \uc774\ubbf8\uc9c0\ub97c \uc694\uccad\ud558\ub294 \uacbd\uc6b0\ub97c \ub4e4 \uc218 \uc788\ub2e4. \uc624\ub298\ub0a0 \ub9ce\uc740 \uc6f9 \ud398\uc774\uc9c0\ub4e4\uc740 CSS \uc2a4\ud0c0\uc77c\uc26c\ud2b8, \uc774\ubbf8\uc9c0 \ud30c\uc77c, \uc2a4\ud06c\ub9bd\ud2b8\uc640 \uac19\uc740 \uc790\uc6d0\ub4e4\uc744 \ubcc4\ub3c4\uc758 \ucd9c\ucc98\ub85c\ubd80\ud130 \uc77d\uc5b4\uc628\ub2e4.", "localization_tags": ["inprogress"], "locale": "ko", "last_edit": "2016-07-27T04:13:17", "review_tags": []}], "modified": "2016-07-27T08:24:37", "label": "Control de acceso HTTP (CORS)", "localization_tags": ["inprogress"], "locale": "es", "id": 163439, "last_edit": "2016-07-27T08:24:32", "summary": "Un recurso hace una solicitud HTTP de origen cruzado cuando solicita otro recurso de un dominio distinto al que pertenece. Por ejemplo, una p\u00e1gina HTML localizada en https://domain-a.com hace una solicitud <img> src a https://domain-b.com/image.jpg. Actualmente muchas p\u00e1ginas en la web cargan recursos como hojas de estilos CSS, im\u00e1genes y scripts de dominios separados.", "sections": [{"id": "Quick_Links", "title": null}, {"id": "Resumen", "title": "Resumen"}, {"id": "Ejemplos_de_escenarios_de_control_de_accesos", "title": "Ejemplos de escenarios de control de accesos"}, {"id": "Solicitudes_simples", "title": "Solicitudes simples"}, {"id": "Solicitudes_Verificadas", "title": "Solicitudes Verificadas"}, {"id": "Solicitudes_con_credenciales", "title": "Solicitudes con credenciales"}, {"id": "Los_encabezados_HTTP_de_respuesta", "title": "Los encabezados HTTP de respuesta"}, {"id": "Access-Control-Allow-Origin", "title": "Access-Control-Allow-Origin"}, {"id": "Access-Control-Expose-Headers", "title": "Access-Control-Expose-Headers"}, {"id": "Access-Control-Max-Age", "title": "Access-Control-Max-Age"}, {"id": "Access-Control-Allow-Credentials", "title": "Access-Control-Allow-Credentials"}, {"id": "Access-Control-Allow-Methods", "title": "Access-Control-Allow-Methods"}, {"id": "Access-Control-Allow-Headers", "title": "Access-Control-Allow-Headers"}, {"id": "Los_encabezados_HTTP_de_solicitud", "title": "Los encabezados\u00a0HTTP de solicitud"}, {"id": "Origin", "title": "Origin"}, {"id": "Access-Control-Request-Method", "title": "Access-Control-Request-Method"}, {"id": "Access-Control-Request-Headers", "title": "Access-Control-Request-Headers"}, {"id": "Especificaciones", "title": "Especificaciones"}, {"id": "Compatibilidad_con_Exploradores", "title": "Compatibilidad con Exploradores"}, {"id": "Nota", "title": "Nota"}, {"id": "Vea_tambi\u00e9n", "title": "Vea tambi\u00e9n"}], "slug": "Web/HTTP/Access_control_CORS", "review_tags": []}