Re: Allow cross-domain scripting from LOCAL files, please!

Re: Allow cross-domain scripting from LOCAL files, please!

JoyInStruggle at yahoo.com

From: JoyInStruggle at yahoo.com Subject: Re: Allow cross-domain scripting from LOCAL files, please! Date: 14 Jan 2005 18:33:39 -0800 Thomas von Frommannshausen wrote: > I would like to see cross-domain scripting enabled for local files, so > that you could write some inspection functions for use with > web-applications which can't be run & tested locally (for example because > of large databases). > > It wouldn't make Opera less secure - you already can do many interesting > things with bookmarklets, but I would like to have a local page with some > scripts for my most often used functions. > > Any comments? > > -- > Thomas von Frommannshausen I second this proposal. I'm attempting to write a Javascript file that retrieves a web-page and parses the HTML. I plan to use it, for example, to read my forum pages, extract post titles, and create an message index. I use an IFrame to retrieve the page, but then when I attempt to look at the IFrame document.body, I get a [quote] ReferenceError message: Security error: attempted to read protected variable [/quote] This is silly: I've already retrieved the page, it already appears in the frame, I can see it on my screen, but Javascript is not allowed to read it! I can open the page manually and view the source, but Javascript is not allowed to see it! Why?! I fail to see how blocking JavaScript access to IFrame content makes me more secure. I wish there were a way to turn off this apparently useless "security feature".