W3C home > Mailing lists > Public > public-webapi@w3.org > August 2007

Re: XHR: definition of same-origin

From: Robert Sayre <sayrer@gmail.com>
Date: Tue, 28 Aug 2007 23:17:07 -0400
Message-ID: <68fba5c50708282017w5622522dx9e7b013fbc768976@mail.gmail.com>
To: "Maciej Stachowiak" <mjs@apple.com>
Cc: "Web API WG (public)" <public-webapi@w3.org>

On 8/28/07, Maciej Stachowiak <mjs@apple.com> wrote:
>
>
> The XHR spec doesn't define same-origin. We had a webkit bug filed
> differently where we apparently interpreted same-origin differently
> than IE or Firefox: <http://bugs.webkit.org/show_bug.cgi?id=15100>
>
> In particular, we would not consider https://example.com:443/ to be
> the same origin as https://example.com/.

Agree. This should come in handy:
 - RFC 3986, section 6.2.3 (Scheme-Based Normalization)

-- 

Robert Sayre

"I would have written a shorter letter, but I did not have the time."
Received on Wednesday, 29 August 2007 03:17:18 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:18:58 GMT