- From: Ben Kelly <notifications@github.com>
- Date: Fri, 22 Jan 2021 07:33:17 -0800
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Friday, 22 January 2021 15:33:29 UTC
I guess `navigate` requests are where manual redirect mode is normally used. Those are essentially "same-origin", but since they are a navigation don't have any primary context to be cross-origin from. In that case, though, the service worker is by definition same origin to the opaqueredirect URL. I still don't understand why we have to hide the location header from the same origin that produced the location header. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/issues/1145#issuecomment-765487729
Received on Friday, 22 January 2021 15:33:29 UTC