W3C home > Mailing lists > Public > whatwg@whatwg.org > March 2009

[whatwg] Canvas origin-clean should not ignore Access Control for Cross-Site Requests

From: Anne van Kesteren <annevk@opera.com>
Date: Sat, 14 Mar 2009 14:11:09 -0000
Message-ID: <op.uqsccsmm64w2qv@annevk-t60.oslo.opera.com>
On Fri, 13 Mar 2009 23:53:36 -0000, Hans Schmucker  
<hansschmucker at gmail.com> wrote:
> Question is: what would be the best way to fix it? Of course the spec
> could be changed for video and image, but wouldn't it be simpler to
> update the defintion of origins to include patterns that can represent
> allow rules?

Aside: You might want to take a look at a later version of the  
specification (the one that is being implemented):

   http://dev.w3.org/2006/waf/access-control/


-- 
Anne van Kesteren
http://annevankesteren.nl/
Received on Saturday, 14 March 2009 07:11:09 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 30 January 2013 18:47:49 GMT