Description
See http://markmail.org/thread/s25ryqyqvdq6xuzj for the whole discussion.
In short: Ajax response contains <header-contribution><script src="http://some.other.domain/file.js"></script></header-contribution>. In wicket-ajax.js #processScript() method (~ line 1680) Wicket uses Wicket.Ajax.Request to load that file and then append it to <head> as <script> with text body instead of <script> with src attribute.
If the src location is not in the same domain as the current app then XMLHttpRequest sends OPTIONS request and if the remote server is not configured to allow cross origin requests then the request for that resource is silently ignored.
We need to investigate whether this can be improved by adding <script src="..."> directly to the <head> and leave the browser to load the content.
Attachments
Issue Links
- relates to
-
WICKET-1623 LinkTree with IndicatingAjaxLink leaks <script> tags
-
- Resolved
-