W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2009

HTTPbis and the Same Origin Policy

From: Tyler Close <tyler.close@gmail.com>
Date: Wed, 25 Nov 2009 07:39:51 -0800
Message-ID: <5691356f0911250739s28be67a2x652fefbb94ac47b7@mail.gmail.com>
To: HTTP Working Group <ietf-http-wg@w3.org>
AFAICT, HTTPbis says nothing about the Same Origin Policy (SOP), yet
this policy is a major constraint on the behavior of many HTTP user
agents, restricting what HTTP requests can be sent and what HTTP
responses can be delivered. SOP is not defined by any standard. Should
HTTPbis step up?

--Tyler

-- 
"Waterken News: Capability security on the Web"
http://waterken.sourceforge.net/recent.html
Received on Wednesday, 25 November 2009 15:40:23 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:13 GMT