- From: Anne van Kesteren <notifications@github.com>
- Date: Wed, 26 Jun 2019 08:18:05 -0700
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Wednesday, 26 June 2019 15:18:28 UTC
From the slides I don't quite understand the same-origin security model given that in Chrome (aiui) same-site JavaScript objects might obtain irrevocable access to each other via document.domain. Is there a processing model available that has a more principled explanation as to when a security error would be returned? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/386#issuecomment-505921583
Received on Wednesday, 26 June 2019 15:18:28 UTC