- From: Aaron Colwell <acolwell@google.com>
- Date: Fri, 30 Jan 2015 18:10:10 +0000
- To: "Jerry Smith (WINDOWS)" <jdsmith@microsoft.com>, "public-html-media@w3.org" <public-html-media@w3.org>
Received on Friday, 30 January 2015 18:10:39 UTC
Hi Jerry, Congrats. I've got a few questions though: 1. Do all the URLs inside the manifests go through CORS verification? 2. What is mixed-content & tainting behavior if the manifests and/or content URLs don't have the same origin or are a mix of http & https content? It would be good to get these behaviors specified in the HTML spec since the current text seems to implicitly assume that the URL passed to .src is the only URL that needs to be considered for media playback. The media URLs in DASH & HLS manifests kind of violate that assumption. It would be nice to get concensus on the appropriate behavior so everyone implements the same thing and it is consistent with current web platform security best practices. Aaron On Thu Jan 29 2015 at 5:25:52 PM Jerry Smith (WINDOWS) < jdsmith@microsoft.com> wrote: > Just a quick note. Microsoft has been working to implement HLS and DASH > Type 1 streaming on top of MSE. We posted some information on this today > on the IE Blog: > http://blogs.msdn.com/b/ie/archive/2015/01/29/simplified-adaptive-video-streaming-announcing-support-for-hls-and-dash-in-windows-10.aspx > > > > Let me know if you have any feedback. > > > > Jerry >
Received on Friday, 30 January 2015 18:10:39 UTC