[WEB-213] Cross Origins

Due to the fact that a server can not do too many requests per minute, a client should be able to do it via ajax on a web page to hold the load of a server down. But this is not possible due to the cross origins failure on your domain. This is also named "Cross Domain issue".

Linked issues

relates to 1

WEB-216 Impossible to get users UUIDs without hitting a rate limit Resolved

Comments 8

kumasasa 2015-12-06T22:39:53Z

What exact website do you mean ?

Max 2015-12-08T14:29:18Z

http://i.imgur.com/Ft2s5SG.png
I mean this website: https://api.mojang.com/users/profiles/minecraft/Floppy012
There is no Access-Control-Allow-Origin header so only direct application and no ajax call can be made.

[Mojang] Kristoffer Jelbring 2015-12-14T08:01:55Z

This is by design.

Max 2015-12-14T11:59:39Z

Then explain how big networks should use the API without having 100s of IP's.

[Mojang] Kristoffer Jelbring 2015-12-14T12:45:14Z

What's the use case?

Max 2015-12-14T15:50:33Z

We wanted to use it to display a name history on our forum. But it does not work on our severs because of the limitations and it wont work with client side ajax because of cross origins. It would be useful to see if he changed the name etc.

kumasasa 2015-12-14T21:33:27Z

Isn't this issue the same as WEB-216 ?

[Mojang] Kristoffer Jelbring 2015-12-15T08:42:30Z

That's not really an intended use case for this API. Since most of our APIs are completely open we have to enforce very strict limits to prevent abuse. If we had an authenticated API it would've been a different story.