- From: Ben Kelly <notifications@github.com>
- Date: Thu, 03 Dec 2015 06:47:28 -0800
- To: whatwg/fetch <fetch@noreply.github.com>
Received on Thursday, 3 December 2015 14:47:59 UTC
Step 4.3 of HTTP fetch reads: ``` Let credentials flag be set if one of - request's credentials mode is "include" - request's credentials mode is "same-origin" and either the CORS flag is unset or response tainting is "opaque" ``` That second bullet should read "or response tainting is NOT opaque". The logic on the opaque check is reversed. --- Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/169
Received on Thursday, 3 December 2015 14:47:59 UTC