Re: [w3c/ServiceWorker] Is resultingClientId preserved over redirects? (#1316) from Ben Kelly on 2018-05-30 (public-webapps-github@w3.org from May 2018)

From: Ben Kelly <notifications@github.com>
Date: Wed, 30 May 2018 06:02:30 -0700
To: w3c/ServiceWorker <ServiceWorker@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/ServiceWorker/issues/1316/393152827@github.com>

I believe we agreed at a previous f2f to reset the resulting client when we perform a cross-origin redirect.  Because clients are tied to their origin, something like this must happen.  Otherwise we risk exposing the same client ID to two different origin service workers.

For example, a fetch event for origin A, then a redirect to origin B, and then a fetch event on origin B.  The origin A and origin B should see different client IDs, IMO.

I'll look later today to try to find where we discussed that before.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/ServiceWorker/issues/1316#issuecomment-393152827

Received on Wednesday, 30 May 2018 13:02:56 UTC