Re: [cors] Review

On Mon, 22 Jun 2009, Tyler Close wrote:
> 
> > Sure, this forces us into designs that suck and generally are 
> > suboptimal.
> 
> If they suck enough, they won't be used widely and so just create 
> additional attack surface area, without providing useful functionality.

I agree, but I don't think we're anywhere near that with CORS.


> I suspect the extra round-trips in CORS will cause many developers to 
> simply avoid using that part of CORS; especially since it's not 
> supported under IE.

Wide implementation support is a prerequisite for any feature to get used, 
indeed.

-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'

Received on Tuesday, 23 June 2009 00:51:55 UTC