Re: [compute-pressure] Does the privacy test need a same origin-domain or a same origin check? (#187) from Raphael Kubo da Costa via GitHub on 2023-02-21 (public-device-apis-log@w3.org from February 2023)

From: Raphael Kubo da Costa via GitHub <sysbot+gh@w3.org>
Date: Tue, 21 Feb 2023 11:43:53 +0000
To: public-device-apis-log@w3.org
Message-ID: <issue_comment.created-1438337134-1676979831-sysbot+gh@w3.org>

I did take a look at the concepts and algorithms when filing this issue as well. What's not clear to me is whether "same origin-domain" is really something that should be phased out in specs and whether there's any case where it actually makes sense to use it rather than "same origin".

In any case, looking at https://developer.mozilla.org/en-US/docs/Web/API/Document/domain#setting_the_domain and https://developer.mozilla.org/en-US/docs/Web/Security/Same-origin_policy#changing_origin it does look like we should be using "same origin" instead.

-- 
GitHub Notification of comment by rakuco
Please view or discuss this issue at https://github.com/w3c/compute-pressure/issues/187#issuecomment-1438337134 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 21 February 2023 11:43:55 UTC