allow for signing json/jsonp urls via an additional callback paramater to $.ajax
It would be great to have for all $.ajax variants, but in particular for jsonp, it is not possible to use signed url schemes with the current url construction mechanism. In particular, the actual url is constructed deep inside the ajax function, and thus cannot be properly signed by the caller.
I propose adding a callback function the ajax method (and all variants) that accepts the url as it is about to be used, and allows the developer to return a new url, namely in this case, one that is signed.
I could envision concerns, and would accept returning only a mapping of key/values that would be added to the end of the url, so as to not modify the existing url.
Either of these mechanisms would allow for me to sign a request with a shared secret and make a json/jsonp call with a proper signature of the url.
Change History (4)
Blocked by: |
5500 added
|
Status: |
new →
open
|
Keywords: |
ajaxrewrite added
|
Resolution: |
→ fixed
|
Status: |
open →
closed
|
Keywords: |
ajaxrewrite removed
|
Milestone: |
1.4 →
1.5
|
Priority: |
major →
high
|
Version: |
1.3.2 →
1.4.4
|
When/if
.beforeSend()
is implemented for JSONP requests it would be possible to sign/modify the url there.