Adam Barth wrote: > What are the all the different string forms? The two I'm aware of are: > > 1) postMessage's origin property > 2) XHR's Origin header You're assuming no one else will make use of these serialization rules? > Browser implementations won't be able to replace same-origin checks > with comparing these strings because of document.domain document.domain just comes down to modifying which origins you compare, for what it's worth. -BorisReceived on Monday, 29 September 2008 02:51:49 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:32:41 GMT