Suppose I write a backend function (method) in a web module, it is exported, and I set its permission to “Anyone”, as explained on this support page:
What does it mean that “Anyone” can call the function? The above support page says “Anyone visiting the site”, but I wonder if anyone in the world, with an internet connection, can call it from their machine, using a script on some other website (i.e. a script that makes an XMLHttpRequest or Fetch).