SVGScriptElement: crossOrigin property
Limited availability
This feature is not Baseline because it does not work in some of the most widely-used browsers.
The crossOrigin property of the SVGScriptElement interface reflects the Cross-Origin Resource Sharing settings for the <script> element. For classic scripts from other origins, this controls whether full error information will be exposed. For module scripts, it controls the script itself and any scripts it imports. See CORS settings attributes for details.
Value
A string containing a keyword specifying the CORS mode to use when fetching the resource. Possible values are:
anonymousor an empty string ("")-
Requests sent by the
SVGScriptElementwill use thecorsRequest.modeand thesame-originRequest.credentialsmode. This means that CORS is enabled and credentials are sent if the resource is fetched from the same origin from which the document was loaded. use-credentials-
Requests sent by the
SVGScriptElementwill use thecorsRequest.modeand theincludeRequest.credentialsmode. All resources requested by the element will use CORS, regardless of which domain the fetch is from.
If the crossOrigin property is specified with any other value, it is the same as specifying it as anonymous.
If the crossOrigin property is not specified, the resource is fetched without CORS (equivalent to using the no-cors Request.mode and the same-origin Request.credentials mode).
Examples
>Accessing the crossOrigin property
<svg xmlns="http://www.w3.org/2000/svg" width="400" height="200">
<script
id="myScript"
href="https://example.com/script.js"
crossorigin="anonymous"></script>
</svg>
const scriptElement = document.getElementById("myScript");
console.log(scriptElement.crossOrigin); // Output: "anonymous"
Specifications
| Specification |
|---|
| Scalable Vector Graphics (SVG) 2> # __svg__SVGScriptElement__crossOrigin> |