cross domain localstorage with javascript

by

How about using cross domain postmessage and iframes?

So on your wrong-domain-page you include an iframe that posts messages with the cookie data back.

Here is a solid example of cross domain postmessages:
http://blog.teamtreehouse.com/cross-domain-messaging-with-postmessage

live example:
http://codepen.io/anon/pen/EVBGyz //forked sender code with a tiiiiiny change 🙂 :

window.onload = function() {
    // Get the window displayed in the iframe.
    var receiver = document.getElementById('receiver').contentWindow;

    // Get a reference to the 'Send Message' button.
    var btn = document.getElementById('send');

    // A function to handle sending messages.
    function sendMessage(e) {
        // Prevent any default browser behaviour.
        e.preventDefault();

        // Send a message with the text 'Hello Treehouse!' to the new window.
        receiver.postMessage('cookie data!', 'http://wrong-domain.com');
    }

    // Add an event listener that will execute the sendMessage() function
    // when the send button is clicked.
    btn.addEventListener('click', sendMessage);
}

Receiver code: 

window.onload=function(){
    var messageEle=document.getElementById('message');
    function receiveMessage(e){
        if(e.origin!=="http://correct-domain.com")
        return;
        messageEle.innerHTML="Message Received: "+e.data;
    }
    window.addEventListener('message',receiveMessage);
}

More Related Contents:

  1. Loading cross-domain endpoint with AJAX
  2. How do I store an array in localStorage? [duplicate]
  3. Is it safe to store a JWT in localStorage with ReactJS?
  4. Sending credentials with cross-domain posts?
  5. window.localStorage vs chrome.storage.local
  6. CORS error on same domain?
  7. Firefox ‘Cross-Origin Request Blocked’ despite headers [closed]
  8. Understanding AJAX CORS and security considerations
  9. How to use Local storage in Angular [duplicate]
  10. How do I get around window.opener cross-domain security
  11. “Origin null is not allowed by Access-Control-Allow-Origin” in Chrome. Why? [duplicate]
  12. How to mock localStorage in JavaScript unit tests?
  13. Canvas tainted by cross-origin data
  14. Accessing localStorage from a webWorker
  15. Javascript/HTML Storage Options Under File Protocol (file://)
  16. How can I serialize a function in JavaScript?
  17. How can two instances of a userscript communicate between frames?
  18. Can you use HTML5 local storage to store a file? If not, how?
  19. how to resolve iframe cross domain issue [duplicate]
  20. How to store objects in HTML5 localStorage/sessionStorage
  21. localStorage – use getItem/setItem functions or access object directly?
  22. Best way to store small UI user preferences in web app? [closed]
  23. How to listen for child window closing?
  24. Store an array with chrome.storage.local
  25. Cookies Only set in Chrome – not set in Safari, Mobile Chrome, or Mobile Safari
  26. iframe not reading cookies in Chrome
  27. How to get data with JavaScript from another server?
  28. Get List of jQuery UI themes – from an URL (same-origin-policy)
  29. Push JSON Objects to array in localStorage
  30. Save data to local storage

Leave a Comment