Re: [w3c/ServiceWorker] clientId on ForeignFetchEvents (#1017) from Jake Archibald on 2016-12-02 (public-webapps-github@w3.org from December 2016)

From: Jake Archibald <notifications@github.com>
Date: Fri, 02 Dec 2016 02:33:48 -0800
To: w3c/ServiceWorker <ServiceWorker@noreply.github.com>
Message-ID: <w3c/ServiceWorker/issues/1017/264423983@github.com>

Yeah, we have to think very hard about this in terms of security. I like @mkruisselbrink's idea around double-keying, but even then it feels like something that the originating origin should opt into.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/ServiceWorker/issues/1017#issuecomment-264423983

Received on Friday, 2 December 2016 10:34:26 UTC