- From: Anne van Kesteren <notifications@github.com>
- Date: Fri, 30 Aug 2019 04:09:56 -0700
- To: whatwg/xhr <xhr@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Friday, 30 August 2019 11:10:22 UTC
Allowing redirects there was always a goal. Your API endpoint could also take the token and send it separately to the CDN unbeknownst to you. You have to be able to trust them regardless. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/xhr/issues/255#issuecomment-526561815
Received on Friday, 30 August 2019 11:10:22 UTC