Re: [w3c/ServiceWorker] Introduce Cross-Origin Embedder Policy (#1516) from Yutaka Hirano on 2020-06-10 (public-webapps-github@w3.org from June 2020)

From: Yutaka Hirano <notifications@github.com>
Date: Wed, 10 Jun 2020 04:41:48 -0700
To: w3c/ServiceWorker <ServiceWorker@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/ServiceWorker/pull/1516/review/427968485@github.com>

@yutakahirano commented on this pull request.



> +  <section algorithm>
+    <h3 id="cross-origin-resource-policy-check-for-cached-resource-algorithm"><dfn>Cross-Origin Resource Policy Check for Cached Resource</dfn></h3>
+
+      : Input
+      :: |passed request|, a [=/request=]
+      :: |response|, a [=/response=]
+      :: |settings object|, an [=/environment settings object=]
+      : Output
+      :: a boolean
+
+      1. If |response|'s [=response/type=] is not "<code>opaque</code>", then return true.
+      1. Let |request| be a copy of |passed request|.
+      1. Set |request|'s [=request/mode=] to "<code>no-cors</code>".
+      1. Set |request|'s [=request/origin=] to |settings object|'s [=environment settings object/origin=].
+      1. Set |request|'s [=request/client=] to |settings object|.
+      1. Return true if [=cross-origin resource policy check=] with |request| and |response| returns <b>allowed</b>, and false otherwise.

Done, I believe.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/ServiceWorker/pull/1516#discussion_r438058220

Received on Wednesday, 10 June 2020 11:42:01 UTC