Re: CfC: only allow authenticated origins to call getUserMedia from Anne van Kesteren on 2014-10-08 (public-media-capture@w3.org from October 2014)

From: Anne van Kesteren <annevk@annevk.nl>
Date: Wed, 8 Oct 2014 15:28:10 +0200
To: Silvia Pfeiffer <silviapfeiffer1@gmail.com>
Cc: "public-media-capture@w3.org" <public-media-capture@w3.org>, Stefan Håkansson LK <stefan.lk.hakansson@ericsson.com>, Justin Uberti <juberti@google.com>
Message-ID: <CADnb78hpdPT78VTyBngbMRM=ui7AgsHvJJW+dBXMvvJjy929og@mail.gmail.com>

On Wed, Oct 8, 2014 at 2:32 PM, Silvia Pfeiffer
<silviapfeiffer1@gmail.com> wrote:
> Can you explain how localhost is an authenticated origin? Does it mean that
> we will continue to be able to develop on http://localhost but any other
> property on http will fail gum by default?

To answer your latter question first, yes. For the former, please see
its definition:
https://w3c.github.io/webappsec/specs/mixedcontent/#is-origin-authenticated

-- 
https://annevankesteren.nl/

Received on Wednesday, 8 October 2014 13:28:38 UTC