W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2013

Re: Security of cross-origin pushed resources

From: Eliot Lear <lear@cisco.com>
Date: Sat, 21 Sep 2013 15:37:53 +0200
Message-ID: <523DA131.30604@cisco.com>
To: "Roy T. Fielding" <fielding@gbiv.com>
CC: "William Chan (ι™ˆζ™Ίζ˜Œ)" <willchan@chromium.org>, HTTP Working Group <ietf-http-wg@w3.org>
Roy,

On 9/21/13 7:36 AM, Roy T. Fielding wrote:
>
>>
>> A client MUST NOT use, in any way, resources provided by a server
>> that is not authoritative for those resources.
>
> Umm, I hope folks realize that this last sentence forbids any
> form of hierarchical caching.
>

Are you saying that a proxy is a server or an LB isn't authoritative?

Eliot
Received on Saturday, 21 September 2013 13:38:24 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 17:14:15 UTC