- From: Kit Cambridge <notifications@github.com>
- Date: Tue, 25 Oct 2016 16:33:49 -0700
- To: w3c/push-api <push-api@noreply.github.com>
Received on Tuesday, 25 October 2016 23:34:40 UTC
> But this only works if I can be totally sure, that an endpoint without keys would always trigger pushsubscriptionchange as soon as endpoint-keys are added and that existing keys are not changed without calling pushsubscriptionchange. Maybe it's also worth calling out as an example in 11.2: "For example, the push service MAY set an expiration time, or the user agent MAY rotate the push message encryption keys." You're completely correct: if the keys change, the service worker and app server need to know. Otherwise, any messages sent to that subscription using the old keys will be dropped, because the browser will fail to decrypt them with the new keys. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/push-api/issues/212#issuecomment-256209380
Received on Tuesday, 25 October 2016 23:34:40 UTC