Toggle search
Toggle menu
1
10
5
41
Heir of the Earth
Toggle preferences menu
Toggle personal menu
Not logged in
Your IP address will be publicly visible if you make any edits.

MediaWiki:Apihelp-main-param-crossorigin

MediaWiki interface page
More actions

When accessing the API using a cross-domain AJAX request (CORS) and using a session provider that is safe against cross-site request forgery (CSRF) attacks (such as OAuth), use this instead of origin=* to make the request authenticated (i.e., not logged out). This must be included in any pre-flight request, and therefore must be part of the request URI (not the POST body).

Note that most session providers, including standard cookie-based sessions, do not support authenticated CORS and cannot be used with this parameter.

Retrieved from "https://wiki.heiroftheearth.de/index.php/MediaWiki:Apihelp-main-param-crossorigin"
Cookies help us deliver our services. By using our services, you agree to our use of cookies.