Hacker News new | past | comments | ask | show | jobs | submit login

I don't really understand how CORS adds much security wise; it relies on the web browser behaving and respecting your policy...

It protects against attacks where the bad actor is trying to get your browser to do something you don't want. It's OK for browser security measures to rely on web browsers to implement them.

Registration is open for Startup School 2019. Classes start July 22nd.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact