Re: [whatwg/fetch] Define the Content-Type header parser (#831) from Anne van Kesteren on 2018-11-22 (public-webapps-github@w3.org from November 2018)

From: Anne van Kesteren <notifications@github.com>
Date: Thu, 22 Nov 2018 05:33:10 -0800
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/pull/831/review/177658508@github.com>

annevk commented on this pull request.



> @@ -471,6 +679,26 @@ each other by 0x2C 0x20, in order.
      "<code>text/plain</code>", then return false.
     </ol>
 
+    <p class=warning>This intentionally does not use <a>extract a MIME type</a> as that algorithm is
+    rather forgiving and servers are not expected to implement it.
+
+    <div class="example no-backref" id=example-cors-safelisted-request-header-content-type>
+     <p>If <a>extract a MIME type</a> were used the following request would not result in a CORS
+     preflight and a naïve parser on the server might treat the request body as JSON:
+
+     <pre><code>

https://github.com/whatwg/fetch/issues/837

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/pull/831#discussion_r235727031

Received on Thursday, 22 November 2018 13:33:31 UTC