W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2009

Re: HTTPbis and the Same Origin Policy

From: Adam Barth <w3c@adambarth.com>
Date: Wed, 25 Nov 2009 12:26:28 -0800
Message-ID: <7789133a0911251226q4cfd3182oacd46373c842ca4f@mail.gmail.com>
To: Tyler Close <tyler.close@gmail.com>
Cc: Julian Reschke <julian.reschke@gmx.de>, HTTP Working Group <ietf-http-wg@w3.org>
On Wed, Nov 25, 2009 at 9:27 AM, Tyler Close <tyler.close@gmail.com> wrote:
> On Wed, Nov 25, 2009 at 7:50 AM, Julian Reschke <julian.reschke@gmx.de> wrote:
>> That being said, defining this in a spec probably *is* a good idea. Did you
>> just volunteer? Note that to produce a spec you actual IETF WG is required.
>
> ;) No, I wasn't trying to throw myself on that grenade. ;) Not yet at
> least. Documenting SOP is a *big* task. I understand why it makes you
> worry about slipping deadlines. So, should the charter be revised to
> exclude the primary security policy that governs use of HTTP? ;)

The same-origin policy is defined here:

http://tools.ietf.org/html/draft-abarth-origin

Adam
Received on Wednesday, 25 November 2009 20:27:21 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:13 GMT