- From: npm1 <notifications@github.com>
- Date: Tue, 29 Oct 2019 09:47:13 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 29 October 2019 16:47:15 UTC
Ok, I will send a PR to add a 'TAO check' in Fetch. Reading the CORS check, it depends on serialization of origin which depends on the tainted origin flag, so we should be using that if the intent is to follow CORS logic. This means the current tainted bool in ResourceTiming is too restrictive, as any cross-origin change would set it. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/953#issuecomment-547519946
Received on Tuesday, 29 October 2019 16:47:15 UTC