- From: Anne van Kesteren <notifications@github.com>
- Date: Tue, 31 Mar 2020 05:11:57 -0700
- To: w3c/ServiceWorker <ServiceWorker@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 31 March 2020 12:12:09 UTC
Before service workers you could only execute as script what `<script src>` allows you to target. After service workers any response a service worker can obtain, can be given to a `<script>`. E.g., consider a response to a request whose method is `POST` or one that has a custom `Accept` header value. Should we enshrine this as another weakening of the same-origin policy or do something about it? Credit: 1lastBr3ath. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/ServiceWorker/issues/1509
Received on Tuesday, 31 March 2020 12:12:09 UTC