W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > July 2015

[Bug 27271] Normatively require https for all ancestor origins when requiring https at all

From: <bugzilla@jessica.w3.org>
Date: Thu, 09 Jul 2015 03:57:37 +0000
To: public-html-bugzilla@w3.org
Message-ID: <bug-27271-2486-ApbQGKVKod@http.www.w3.org/Bugs/Public/>
https://www.w3.org/Bugs/Public/show_bug.cgi?id=27271

Mike West <mkwst@google.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
              Flags|needinfo?(mkwst@google.com) |

--- Comment #13 from Mike West <mkwst@google.com> ---
Yes. The "secure contexts" spec intends to check ancestors. bz has some issues
with the current way we're doing that (see
https://lists.w3.org/Archives/Public/public-webappsec/2015Jul/0012.html, for
instance), but I think we'll work those out.

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
Received on Thursday, 9 July 2015 03:57:40 UTC

This archive was generated by hypermail 2.3.1 : Thursday, 9 July 2015 03:57:40 UTC