- From: Anne van Kesteren <notifications@github.com>
- Date: Mon, 16 Mar 2015 07:02:34 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
Received on Monday, 16 March 2015 14:29:16 UTC
In HTTP Fetch step 2.2 we check request's mode, we could also check request's response tainting. The difference would be that a opaque response to a same-origin (but no-cors) request would not be allowed whereas that is allowed today. Status quo is probably okay. --- Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/23#issuecomment-81684261
Received on Monday, 16 March 2015 14:29:16 UTC