- From: Anne van Kesteren <notifications@github.com>
- Date: Mon, 11 Nov 2019 06:23:14 -0800
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Monday, 11 November 2019 14:23:17 UTC
annevk commented on this pull request. > +<var>response</var>, run these steps: + +<ol> + <li><p>If <var>request</var>'s <a for=request>timing allow failed flag</a> is set, then return + failure. + + <li><p>If <var>request</var>'s <a for=request>response tainting</a> is "<code>basic</code>", then return success. + + <li><p>Let <var>values</var> be the result of + <a for="header list">getting, decoding, and splitting</a> + `<code>Timing-Allow-Origin</code></a>` from <var>response</var>'s <a for=response>header list</a>. + + <li><p>If <var>values</var> contains `<code>*</code>`, then return success. + + <li><p>Let <var>serializedOrigin</var> be the result of <a>serializing a request origin</a> with + <var>request</var>. They can be filed now (having a brief heads up window is nice), and the test change can be created as well. Ideally we also have a PR ready for Resource Timing. That way we can land it all together and know that it integrates well. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/pull/955#discussion_r344733334
Received on Monday, 11 November 2019 14:23:17 UTC