- From: Yves Lafon <notifications@github.com>
- Date: Wed, 20 Dec 2017 01:07:30 -0800
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Wednesday, 20 December 2017 09:07:53 UTC
> > IIRC there was an issue with some browser on handling Vary in cache > > Browser bugs are not a reason to introduce a new feature (and new bugs). Of course, this was just a side-comment on the use of Vary, not related to this issue. > Given that there's plenty of servers using * that seems false. (Note also that just echoing the origin is not insecure. It's only insecure if you also set the ACAC header.) It is a sign that `*` works in the vast majority of the cases, which is a good thing. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/76#issuecomment-353006116
Received on Wednesday, 20 December 2017 09:07:53 UTC