Hi!
This would avoid the cross-domain scripting prohibitions, and allow toolserver developers to incorporate AJAX functionality into their scripts.
And allow each and everyone on toolserver to do XSS attacks, thus by having trust problems. Not mentioning the problem of rewrites and request pingpongs over atlantic ocean..
Best regards,