HTML <script> crossorigin Attribute
The HTML <script> tag with the crossorigin attribute specifies how to handle fetching of external scripts. When set to “anonymous”, it indicates that the script should be retrieved without sending user credentials.
Cross-Origin Resource Sharing(CORS) is a tool that allows web pages requesting for resources from another domain that is outside of their own domain. It is also used for managing cross-origin requests which is a request for a resource from an outside domain.
Syntax:
<script crossorigin="anonymous | use-credentials">
Attribute Values:
Attribute | Description |
---|---|
anonymous | It has a default value. It defines a CORS request will be sent without passing the credentials information. |
use-credentials | A cross-origin request will be sent with credentials, cookies, and certificates |
Note: This attribute is only valid for use if we try to fetch the resources from the third party domain.
Example: In this example the HTML script tag with crossorigin attribute set to “anonymous” for loading my_script.js file. Button for submission included in the body.
<!DOCTYPE html>
<html>
<head>
<title>
HTML script crossorigin Attribute
</title>
</head>
<body>
<h2>HTML script crossorigin Attribute</h2>
<br />
<button>Submit</button>
<script
type="text/javascript"
src="my_script.js"
crossorigin="anonymous"
></script>
</body>
</html>
Output:
Supported Browsers:
Contact Us