W3C home > Mailing lists > Public > public-webapps@w3.org > October to December 2011

Re: [cors] Failed sharing check and cookies

From: Ian Hickson <ian@hixie.ch>
Date: Tue, 11 Oct 2011 06:43:46 +0000 (UTC)
To: Jonas Sicking <jonas@sicking.cc>
Cc: Anne van Kesteren <annevk@opera.com>, WebApps WG <public-webapps@w3.org>
Message-ID: <Pine.LNX.4.64.1110110635260.20981@ps20323.dreamhostps.com>
On Mon, 10 Oct 2011, Jonas Sicking wrote:
> 
> This will however be non-trivial to implement in Gecko as our HTTP layer 
> does the cookie handling, but the CORS implementation is built on top of 
> the HTTP layer.

That's essentially the same reason the spec does it too. Cookie setting is 
handled at the "network layer" (the fetch algorithm, which is built 
directly on top of HTTP), and CORS is built on top of that, and <img> and 
XHR are built on top of CORS.

-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'
Received on Tuesday, 11 October 2011 06:47:37 GMT

This archive was generated by hypermail 2.3.1 : Tuesday, 26 March 2013 18:49:48 GMT