This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Talk:CORS OriginHeaderScrutiny

From OWASP

Revision as of 01:38, 30 May 2018 by Jweiler (talk | contribs) (request for clarification of some statements)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

what does "protract allowed domain guessing" mean?

I don't understand what this is trying to say - "It's the browser (or others tools) that send the HTTP request then the IP address that we have access to is the client IP address"

Retrieved from "https://wiki.owasp.org/index.php?title=Talk:CORS_OriginHeaderScrutiny&oldid=241009"