Re: [whatwg/fetch] Streaming upload and HTTP protocol info leak (#1007) from Yoichi Osato on 2020-04-16 (public-webapps-github@w3.org from April 2020)

From: Yoichi Osato <notifications@github.com>
Date: Wed, 15 Apr 2020 18:07:35 -0700
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/1007/614355756@github.com>

I think session existence and the flag are independent to each other.
Thus the condition list should look like:

1. If there is an HTTP/2 session, 
   1. if AllowHTTP1ForStreamingUpload is true ..
   1. if AllowHTTP1ForStreamingUpload is false ..
1. If there is no HTTP/2 session,
   1. if AllowHTTP1ForStreamingUpload is true ..
   1. if AllowHTTP1ForStreamingUpload is false ..

Also there is no difference between Same-origin and Cross-origin case. Is that true?

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/1007#issuecomment-614355756

Received on Thursday, 16 April 2020 01:07:48 UTC