- From: Jeffrey Yasskin via GitHub <sysbot+gh@w3.org>
- Date: Tue, 18 Aug 2015 15:48:07 +0000
- To: public-web-nfc@w3.org
Don't implement security restrictions based on paths. The origin is the fundamental concept of web security, so that's what your restrictions should be based on. Anne's point about using the [incumbent settings object](https://html.spec.whatwg.org/multipage/webappapis.html#incumbent-settings-object) is good. It has an [origin](https://html.spec.whatwg.org/multipage/webappapis.html#definitions-2:origin-2). -- GitHub Notif of comment by jyasskin See https://github.com/w3c/web-nfc/issues/33#issuecomment-132255671
Received on Tuesday, 18 August 2015 15:48:09 UTC