> IIRC there was an issue with some browser on handling Vary in cache Browser bugs are not a reason to introduce a new feature (and new bugs). > The lack of libraries that do retry is a symptom that people are using the more dangerous option of echoing back the origin instead of relying on a library that would do retries for every network error. Given that there's plenty of servers using `*` that seems false. (Note also that just echoing the origin is not insecure. It's only insecure if you also set the ACAC header.) -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/76#issuecomment-352993945
Received on Wednesday, 20 December 2017 08:10:37 UTC