Re: [compute-pressure] Does the privacy test need a same origin-domain or a same origin check? (#187)

I did take a look at the concepts and algorithms when filing this issue as well. What's not clear to me is whether "same origin-domain" is really something that should be phased out in specs and whether there's any case where it actually makes sense to use it rather than "same origin".

In any case, looking at https://developer.mozilla.org/en-US/docs/Web/API/Document/domain#setting_the_domain and https://developer.mozilla.org/en-US/docs/Web/Security/Same-origin_policy#changing_origin it does look like we should be using "same origin" instead.

-- 
GitHub Notification of comment by rakuco
Please view or discuss this issue at https://github.com/w3c/compute-pressure/issues/187#issuecomment-1438337134 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 21 February 2023 11:43:55 UTC