Re: [whatwg/fetch] Figure out if request header mutation is possible (#391)

That could maybe work. A problem with that approach could be that we also have certain non-safelisted headers added by other standards at the API layer. I'm not entirely sure whether that is the case however. There are headers that other standards add that violate CORS, such as `DNT`, `Upgrade-Insecure-Requests`, etc., but maybe all use a hook at the network layer in which case it would be less of an issue.

@mikewest do you know?

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/391#issuecomment-283424846

Received on Wednesday, 1 March 2017 18:23:37 UTC