- From: bvandersloot-mozilla <notifications@github.com>
- Date: Mon, 19 May 2025 05:24:12 -0700
- To: whatwg/fetch <fetch@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Monday, 19 May 2025 12:24:16 UTC
@bvandersloot-mozilla commented on this pull request. > +</div> + +<div algorithm> +<p>To <dfn id=parse-and-store-response-cookie-headers>parse and store response +`<code>Set-Cookie</code>` headers</dfn>, given a <a for=/>request</a> <var>request</var> and a +<a for=/>response</a> <var>response</var>, run these steps: + +<ol> + <li><p>If the user agent is configured to disable cookies for <var>request</var>, + then it should return. + + <li><p>Let |allowNonHostOnlyCookieForPublicSuffix| be false. + + <li><p>Let |isSecure| be false. + + <li><p>If <var>request</var>'s <a for=request>client</a> is a <a>secure context</a>, set It would be nice to include local addresses and hosts for Secure cookies, even if just `localhost`. Though, this probably is not be the PR to do it in. -- Reply to this email directly or view it on GitHub: https://github.com/whatwg/fetch/pull/1807#discussion_r2095590353 You are receiving this because you are subscribed to this thread. Message ID: <whatwg/fetch/pull/1807/review/2850572661@github.com>
Received on Monday, 19 May 2025 12:24:16 UTC