Re: #328: user Intervention on Redirects

tis 2012-02-07 klockan 08:38 -0800 skrev Martin Thomson:

> There isn't a security problem.  X has the information and could
> forward to Y itself.

No it doesn't. Y may require authentication / session cookies / IP based
access lists etc which X can not provide on it's own.

Obviously it only makes a significant difference for user-agents using
explicit URLs and not in the fuzzy case of surfing some web site with a
browser.

Regards
Henrik

Received on Friday, 17 February 2012 01:38:07 UTC