Re: [whatwg/fetch] Clarification on CORS preflight fetches for TLS client certificates (#869) from youennf on 2021-02-27 (public-webapps-github@w3.org from February 2021)

From: youennf <notifications@github.com>
Date: Sat, 27 Feb 2021 10:17:47 -0800
To: whatwg/fetch <fetch@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <whatwg/fetch/issues/869/787113937@github.com>

> Firefox now has a Chrome-compatible mode that's disabled by default. But we might consider changing that if we keep running into issues. (Tracked by https://bugzilla.mozilla.org/show_bug.cgi?id=1019603.)
> 
> I'd be curious to hear from @youennf and others from Safari with regards to what their thinking is on this.

I do not think we should encourage this pattern, the spec status quo seems preferable to me.
IIUIC, Chrome would ideally align with the spec so that it does not get deployed to more websites.
That does not preclude enabling this behavior for specific existing websites.

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/whatwg/fetch/issues/869#issuecomment-787113937

Received on Saturday, 27 February 2021 18:17:59 UTC