W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > July 2015

[Bug 27271] Normatively require https for all ancestor origins when requiring https at all

From: <bugzilla@jessica.w3.org>
Date: Thu, 09 Jul 2015 00:59:57 +0000
To: public-html-bugzilla@w3.org
Message-ID: <bug-27271-2486-rPfRTTgxIr@http.www.w3.org/Bugs/Public/>
https://www.w3.org/Bugs/Public/show_bug.cgi?id=27271

David Dorwin <ddorwin@google.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |hsivonen@hsivonen.fi
              Flags|                            |needinfo?(annevk@annevk.nl)
                   |                            |,
                   |                            |needinfo?(hsivonen@hsivonen
                   |                            |.fi),
                   |                            |needinfo?(mkwst@google.com)

--- Comment #12 from David Dorwin <ddorwin@google.com> ---
I believe this issue is resolved by the fix for
https://github.com/w3c/encrypted-media/issues/49, which references
https://w3c.github.io/webappsec/specs/powerfulfeatures/#settings-secure via
https://w3c.github.io/webappsec/specs/powerfulfeatures/#secure-context.

Mike West: Please confirm that text addresses this.
Henri: Do you agree?
Anne: Do you have concerns? Does this really depend on 27190?

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
Received on Thursday, 9 July 2015 01:00:09 UTC

This archive was generated by hypermail 2.3.1 : Thursday, 9 July 2015 01:00:09 UTC