Re: [whatwg/fetch] Allow servers to completely opt out of current and future CORS protection (#865) from Anne van Kesteren on 2019-02-07 (public-webapps-github@w3.org from February 2019)

From: Anne van Kesteren <notifications@github.com>
Date: Thu, 07 Feb 2019 01:50:46 -0800
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/865/461352226@github.com>

It basically comes down to an enumeration of the changes required to the standard. E.g., https://gist.github.com/annevk/6f2dd8c79c77123f39797f6bdac43f3e. Even better would be a PR.

https://whatwg.org/working-mode and https://whatwg.org/faq#adding-new-features have more general guidance on new features. And might actually be a better place to start given that it's unclear there's much appetite for wildcarding as I said.

(https://github.com/WICG/origin-policy might also do away with some of the more granular need for CORS here and there.)

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/865#issuecomment-461352226

Received on Thursday, 7 February 2019 09:51:08 UTC