この記事はまだボランティアによって 日本語 に翻訳されていません。ぜひ MDN に参加して翻訳を手伝ってください!
この記事を English (US) で読むこともできます。
Web content's origin is defined by the scheme (protocol), host (domain), and port of the URL used to access it. Two objects have the same origin only when the scheme, host, and port all match.
Some operations are restricted to same-origin content, and this restriction can be lifted using CORS.
Examples of same origin
http://example.com/app1/index.htmlhttp://example.com/app2/index.html |
same origin because same scheme (http) and host (example.com) |
http://Example.com:80http://example.com |
same origin because a server delivers HTTP content through port 80 by default |
Examples of different origin
http://example.com/app1https://example.com/app2 |
different schemes |
http://example.comhttp://www.example.comhttp://myapp.example.com |
different hosts |
http://example.comhttp://example.com:8080 |
different ports |
Learn more
See Same-origin policy for more information.