Re: [whatwg/fetch] Document CORS safelist exceptions (#621)

> @mikewest if we can still change these I think using +json would be a lot better. Otherwise your generic JSON end point has to know about all kinds of MIME types.

I'd suggest we land this patch as-is to reflect the status quo, and come back and update it if/when we are able to update the MIME types browsers are sending.

> application/xss-auditor-report (though I couldn't find anything explanatory for it, @mikewest do you know of anything?)

Nope. We've done a bad job documenting this. When we move it into the reporting API, we'll need to write up the format (or add some metrics and look at usage to see if anyone cares about it at all). I'd suggest we come back and link it then.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/pull/621#issuecomment-345631020

Received on Monday, 20 November 2017 08:58:34 UTC