Re: [whatwg/fetch] Redesign "extract header values" and "extract header list values" (#814) from Anne van Kesteren on 2018-10-19 (public-webapps-github@w3.org from October 2018)

From: Anne van Kesteren <notifications@github.com>
Date: Fri, 19 Oct 2018 06:38:41 -0700
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/814/431366126@github.com>

Things to define anew within Fetch (and test) to get rid of "extract header values":

- [ ] request Content-Type (CORS-safelisted request-header)
- [ ] request DPR/Downlink/Save-Data/Viewport-Width/Width (CORS-safelisted request-header)
- [ ] X-Content-Type-Options (see #818 for a patch)

For "extract header list values":

- [ ] response Content-Type (see https://github.com/whatwg/mimesniff/issues/30)
- [ ] Access-Control-Expose-Headers
- [ ] Location
- [ ] Content-Encoding (see #816 for removing a quirk, #716 for the remainder)
- [ ] Access-Control-Allow-Methods
- [ ] Access-Control-Allow-Headers
- [ ] Access-Control-Max-Age
- [ ] Access-Control-Allow-Origin and Access-Control-Allow-Credentials (should be a literal match on the return of a "get" defined by #818)
- [ ] Sec-WebSocket-Protocol

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/814#issuecomment-431366126

Received on Friday, 19 October 2018 13:39:08 UTC