Re: [SecureContext] - throw or hide from Martin Thomson on 2016-03-21 (public-script-coord@w3.org from January to March 2016)

From: Martin Thomson <mt@mozilla.com>
Date: Mon, 21 Mar 2016 20:18:18 +1100
To: Anne van Kesteren <annevk@annevk.nl>
Cc: Jonathan Watt <jwatt@jwatt.org>, Richard Barnes <rbarnes@mozilla.com>, public-script-coord <public-script-coord@w3.org>
Message-ID: <CAPLxc=WnT8+DpH61-68g8KrHqw-VxF8=3WJGGgBaxN=VpG_kJA@mail.gmail.com>

On Mon, Mar 21, 2016 at 7:53 PM, Anne van Kesteren <annevk@annevk.nl> wrote:
> We'd then still need
> something for legacy APIs we want to limit to secure contexts (maybe
> just prose).

I think that the decision to make an API unavailable over HTTP, when
it was previously available, is going to be so uncomfortable that we
can probably go with prose and decide on a per-API basis.

BTW, why choose yet-another venue for this discussion?

Received on Monday, 21 March 2016 16:43:39 UTC