1

I'm writing an app that will make available a set of api functions that require cross site scripting to work. I'll be utilizing jsonp which will allow other developers to consume these services for their web applications.

  • What security concerns should I consider to protect my server data?
  • What security concerns should other developers take when consuming my services via jsonp?
asked Jun 25, 2012 at 19:25

1 Answer 1

2

Actually, if you still have a chance, you should take a look at CORS (Cross-Origin-Resource-Sharing). It is the W3C specification that is intended to replace the JSONP wrapping workaround, and it went into working draft as recent as April 3, 2012.

So my answer to you, in regards to security, is that you should look at CORS.

Here is the W3C Working Draft Security Considerations link, regarding CORS security and the 'replacement' of JSONP.

answered Jun 25, 2012 at 20:56
0

Your Answer

Draft saved
Draft discarded

Sign up or log in

Sign up using Google
Sign up using Email and Password

Post as a guest

Required, but never shown

Post as a guest

Required, but never shown

By clicking "Post Your Answer", you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.