以下是您需要做的事情:JSONP。
由于政策原因,您无法向雅虎发出AJAX请求,但有解决方法。即脚本标记,它可以向任何地方发出请求。
例如,假设您希望在用户单击“GO”按钮时对雅虎进行请求。您需要添加事件处理程序以捕获用户的单击事件,然后将新的脚本标记添加到DOM的头部部分。脚本标记的URL很重要,它必须具有回调参数,例如:
http://helloasdf.cloudfoundry.com/get.tokens?callback=xss
注意回调函数可以是任意的函数名称。响应将会是:
xss(["asdf"])
这意味着您代码中的xss函数将接收到["asdf"]。
或使用Yahoo的API;
http://d.yimg.com/autoc.finance.yahoo.com/autoc?query=GS&callback=YAHOO.Finance.SymbolSuggest.ssCallback
注意回调函数YAHOO.Finance.SymbolSuggest.ssCallback,当请求返回时将调用该函数:
YAHOO.Finance.SymbolSuggest.ssCallback({"ResultSet":{"Query":"gs","Result":[{"symbol":"GS","name": "The Goldman Sachs Group, Inc.","exch": "NYQ","type": "S","exchDisp":"NYSE","typeDisp":"Equity"},{"symbol":"^GSPC","name": "S&P 500 INDEX,RTH","exch": "SNP","type": "I","typeDisp":"Index"},{"symbol":"GSS","name": "Golden Star Resources, Ltd.","exch": "ASE","type": "S","exchDisp":"AMEX","typeDisp":"Equity"},{"symbol":"^GSPTSE","name": "S&P/TSX Composite index (Interi","exch": "TOR","type": "I","exchDisp":"Toronto","typeDisp":"Index"},{"symbol":"GSK","name": "GlaxoSmithKline plc","exch": "NYQ","type": "S","exchDisp":"NYSE","typeDisp":"Equity"},{"symbol":"GSX","name": "Gasco Energy Inc.","exch": "ASE","type": "S","exchDisp":"AMEX","typeDisp":"Equity"},{"symbol":"OIL","name": "iPath S&P GSCI Crude Oil TR Index ETN","exch": "PCX","type": "E","typeDisp":"ETF"},{"symbol":"GSIC","name": "GSI Commerce Inc.","exch": "NMS","type": "S","exchDisp":"NASDAQ","typeDisp":"Equity"},{"symbol":"GST","name": "Gastar Exploration, Ltd.","exch": "ASE","type": "S","exchDisp":"AMEX","typeDisp":"Equity"},{"symbol":"GSI","name": "General Steel Holdings, Inc.","exch": "NYQ","type": "S","exchDisp":"NYSE","typeDisp":"Equity"}]}})
这是一个关于编程的内容,翻译如下:
这里是你需要动态添加脚本标签所需的js示例:
var headLoc = document.getElementsByTagName("head").item(0);
var scriptObj = document.createElement("script");
var token="localstring"
var url="http://helloasdf.cloudfoundry.com/get.tokens?callback=xssCallback";
scriptObj.setAttribute("type", "text/javascript");
scriptObj.setAttribute("charset", "utf-8");
scriptObj.setAttribute("src", url);
scriptObj.setAttribute("id", 'asf12');
headLoc.appendChild(scriptObj);
我在这里更详细地记录了该过程:http://eggie5.com/22-circumvent-same-origin-policy