make API calls to external domains.
authenticate these calls through OAuth without compromising your secrets.
get real-time notifications from your backend.
and use the browser to store the some of the user’s data.
25th–29th July 2011