File: PostMessageAPI.txt

*Q: What was the purpose of the two additions to iframe.html?
*A: This stores the source object, required for initiating cross-domain communications. Trying to activate the parent page's window object any other way will throw a security error. The remote page can now initiate return communications when it chooses and not merely in immediate response to a communication from the parent page.