Re: [cors] Review

On Tue, 02 Jun 2009 14:55:38 +0200, Mark Nottingham <mnot@mnot.net> wrote:
> One other thing - as I understand the current design, if a preflight  
> request is redirected, the redirect is required to have a Access- 
> Control-Allow-Origin header. This is implied in the client redirect  
> steps, but should be spelled out in the server requirements as well.

Done.

Thanks,


-- 
Anne van Kesteren
http://annevankesteren.nl/

Received on Saturday, 13 June 2009 13:09:02 UTC