I'd like to detect if an AJAX request from a specific website (say I only want to allow "someallowedwebsite.com"). Is it feasible? I guess it's not. If someallowedwebsite were using JSONRequest, would it help?
On a related note: What is the best way to make sure that a given request comes from a website you expect it to come from?