[Bug 7599] Either drop the two places that set the "Origin" HTTP header, or update HTML5 to match the Sec-From/Origin I-D (if the latter is stable enough yet). from bugzilla@wiggum.w3.org on 2009-09-24 (public-html-bugzilla@w3.org from September 2009)

From: <bugzilla@wiggum.w3.org>
Date: Thu, 24 Sep 2009 23:31:38 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1Mqxmk-0004HC-Jm@wiggum.w3.org>

http://www.w3.org/Bugs/Public/show_bug.cgi?id=7599





--- Comment #2 from Adam Barth <w3c@adambarth.com>  2009-09-24 23:31:38 ---
We've harmonized the Origin header with CORS.  There is no need to renamed the
header anymore, but it would be useful to list the privacy-sensitive contexts
as described in Comment #1.


-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.

Received on Thursday, 24 September 2009 23:31:49 UTC