HTTP - Same Origin Request


A request is a same-origin request if:

are the same.

A request that is not a same-origin request is called a cross origin request.

When each of the URIs has the:

they are from the same-origin


same origin

not the same origin


Same Origin Policy

User agents (such as browser) commonly apply same-origin restrictions to network requests. See Same-Origin Policy.


Two origins are said to be the same origin if the algorithm returns true.

Powered by ComboStrap