Author: wiki_ra
Description:
r62546 of MediaWiki implemented Cross-Origin Resource Sharing (CORS) in the WikiMedia API. This allows JavaScript to call the API from designated (or all) external websites. CORS is now enabled on the recent releases of all major web-browsers. The upshot of this is that the major browsers have ceased to support JavaScript calls that are not CORS compliant.
The English-language Wikipedia is using r64051. Can we add toolserver.org to the "white list" of websites allowed to make JavaScript calls to the English-language Wikipedia?
This request has been raised on-site at the Village Pump. No concerns were raised and it was commented that it seemed like no-one would object. When CORS was feature requested this request was also raised but naturally postponed until CORS support was live (https://bugzilla.wikimedia.org/show_bug.cgi?id=19907).
The change requires adding '*.toolserver.org' to the wgCrossSiteAJAXdomains array in includes/DefaultSettings.php.
Version: unspecified
Severity: enhancement