- From: Fozi <notifications@github.com>
- Date: Fri, 31 Jul 2015 08:31:29 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
Received on Friday, 31 July 2015 15:31:57 UTC
Something I missed yesterday is a case where you have a global list of fingerprints but you do a request from a host that is not on the list. This might be ok, or ok it the server uses HPKP. This would require some global default flag that would be "strict" by default but could be set to something like "allow-unknown" or "allow-unknown-hpkp". --- Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/98#issuecomment-126725579
Received on Friday, 31 July 2015 15:31:57 UTC