- From: Maciej Stachowiak <notifications@github.com>
- Date: Tue, 29 May 2018 23:58:28 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Wednesday, 30 May 2018 06:58:51 UTC
The same/same-origin version clearly needs to enforce same port. For same-site, I am not sure. Since it already allows different hosts, it's not clear to me what the benefit would be of having any kind of port restriction. But on the other hand, custom ports are used rarely enough that it probably isn't very harmful either. I'm trying to think of a scenario where it's ok to let `http://a.example.com` resources be accessed from `http://b.example.com` but not `http://a.example.com:8080` and I can't think of an obviously problematic case. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/687#issuecomment-393051369
Received on Wednesday, 30 May 2018 06:58:51 UTC