- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Thu, 9 Oct 2014 19:05:03 +0200
- To: "David (Standards) Singer" <singer@apple.com>
- Cc: Sid Stamm <sstamm@mozilla.com>, Tracking Protection Working Group <public-tracking@w3.org>
On Thu, Oct 9, 2014 at 7:00 PM, David (Standards) Singer <singer@apple.com> wrote: > Given that, the group tried to minimize difference from existing techniques, notably cookie and script cross-origin, so as to re-use as much as possible (concept and code). I get the sense that you’d prefer a more modern design that represents an improvement on cookies, cors, and the like. I am not sure the group agrees; simple/compatible to implement is actually desirable. (That’s why I hesitate about promise returns, for example, and I am pushing back gently on expiration parameters). To be clear, cookies and document.domain and friends depend on publicsuffix.org. That is bad. We don't want to increase the amount of things that depend on that unless there's a very compelling reason. Anything new we've done for the last decade or so has been based on origins. -- https://annevankesteren.nl/
Received on Thursday, 9 October 2014 17:05:31 UTC