W3C home > Mailing lists > Public > public-webapi@w3.org > April 2006

Re: XHR: restrictions on request headers

From: Jonas Sicking <jonas@sicking.cc>
Date: Tue, 11 Apr 2006 16:52:07 -0700
Message-ID: <443C4127.4000706@sicking.cc>
To: Ian Hickson <ian@hixie.ch>
Cc: Maciej Stachowiak <mjs@apple.com>, Web APIs WG <public-webapi@w3.org>

Ian Hickson wrote:
> But I would add one more. Authors are stupid. We shouldn't provide them 
> with features whose only possible use is for them to shoot themselves in 
> the foot. In other words, I would phrase the question not as "which 
> headers should we restrict", but "which headers should we allow", and only 
> allow those that have valid use cases.

This sounds like what I suggested. But are there really any headers 
"whose only possible use is for them to shoot themselvs in the foot"?

/ Jonas
Received on Tuesday, 11 April 2006 23:52:28 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:54 GMT