- From: CVS User ihickson <cvsmail@w3.org>
- Date: Tue, 20 Nov 2012 01:42:06 +0000
- To: public-html-commits@w3.org
Update of /sources/public/html5/webstorage In directory roscoe:/tmp/cvs-serv20579 Modified Files: Overview.html Log Message: More security fixes: Location is now entirely Unforgeable, and wording for some other security paragraphs is now consistent. (whatwg r7515) --- /sources/public/html5/webstorage/Overview.html 2012/11/06 01:06:23 1.205 +++ /sources/public/html5/webstorage/Overview.html 2012/11/20 01:42:06 1.206 @@ -215,7 +215,7 @@ <p><a href="http://www.w3.org/"><img alt="W3C" height="48" src="http://www.w3.org/Icons/w3c_home" width="72"></a></p> <h1>Web Storage</h1> - <h2 class="no-num no-toc" id="editor-s-draft-6-november-2012">Editor's Draft 6 November 2012</h2> + <h2 class="no-num no-toc" id="editor-s-draft-20-november-2012">Editor's Draft 20 November 2012</h2> <dl><dt>Latest Published Version:</dt> <dd><a href="http://www.w3.org/TR/webstorage/">http://www.w3.org/TR/webstorage/</a></dd> <dt>Latest Editor's Draft:</dt> @@ -351,7 +351,7 @@ </dl><p>The W3C <a href="http://www.w3.org/2008/webapps/">Web Applications Working Group</a> is the W3C working group responsible for this specification's progress along the W3C Recommendation track. - This specification is the 6 November 2012 Editor's Draft. + This specification is the 20 November 2012 Editor's Draft. </p> @@ -828,14 +828,11 @@ <h4 id="security-localStorage"><span class="secno">4.3.1 </span>Security</h4> - <p>User agents must throw a <code>SecurityError</code> exception - whenever any of the members of a <code><a href="#storage-0">Storage</a></code> object - originally returned by the <code title="dom-localStorage"><a href="#dom-localstorage">localStorage</a></code> attribute are accessed - by scripts whose <span>effective script origin</span> is not the - <span title="same origin">same</span> as the <span>origin</span> of - the <code>Document</code> of the <code>Window</code> object on which - the <code title="dom-localStorage"><a href="#dom-localstorage">localStorage</a></code> attribute was - accessed.</p> + <p>User agents must throw a <code>SecurityError</code> exception whenever any properties of a + <code><a href="#storage-0">Storage</a></code> object originally returned by the <code title="dom-localStorage"><a href="#dom-localstorage">localStorage</a></code> attribute are accessed by scripts whose + <span>effective script origin</span> is not the <span title="same origin">same</span> as the + <span>origin</span> of the <code>Document</code> of the <code>Window</code> object on which the + <code title="dom-localStorage"><a href="#dom-localstorage">localStorage</a></code> attribute was accessed.</p> <p class="note">This means <code><a href="#storage-0">Storage</a></code> objects are neutered when the <code title="dom-document-domain">document.domain</code>
Received on Tuesday, 20 November 2012 01:42:12 UTC