- From: Mike West <notifications@github.com>
- Date: Tue, 13 Oct 2015 05:31:19 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
Received on Tuesday, 13 October 2015 12:31:56 UTC
> @@ -2087,6 +2094,11 @@ <h4 id="should-response-to-request-be-blocked-due-to-nosniff?"><dfn title="shoul > "<code title>manual</code>" and <var title>response</var>'s > <span title=concept-response-type>type</span> is "<code title>opaqueredirect</code>". > </ul> > + > + <li> > + <p>Execute <a href=https://w3c.github.io/webappsec-csp/set-response-policy-list>Set > + <var title>response</var>'s policy list</a> on <var title>response</var>. > + <span data-anolis-ref>CSP</span> Sorry, I don't follow the question. This bit takes care of responses pushed in from Service Workers. The change in HTTP-network fetch takes care of requests pushed in from the network (either inside or outside of a Service Worker). Where else do you think we ought to be setting the CSP list? --- Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/pull/140/files#r41859243
Received on Tuesday, 13 October 2015 12:31:56 UTC