W3C home > Mailing lists > Public > public-webapps@w3.org > April to June 2012

Re: [CORS] Applying preflight cache to an entire domain?

From: Anne van Kesteren <annevk@opera.com>
Date: Wed, 18 Apr 2012 14:16:36 +0200
To: public-webapps@w3.org, "Monsur Hossain" <monsur@gmail.com>
Message-ID: <op.wcym1y0864w2qv@annevk-macbookpro.local>
On Tue, 17 Apr 2012 23:35:16 +0200, Monsur Hossain <monsur@gmail.com>  
> Hi there. The CORS spec currently indicates that the preflight cache  
> should
> store preflight responses for a particular origin/request url pair. That
> means that multiple requests to different urls on the same domain will
> always trigger a preflight, even if the preflight response is exactly the
> same for those urls. If a server only accepts a set of well defined http
> methods and http headers, then issuing the preflight on different  
> requests
> is redundant.
> I was wondering if there could be a way for the server to indicate what
> scope the preflight applies to? For example, the default could still be  
> to cache per origin/request-url, but maybe the server could set a special
> "Access-Control-Max-Age-Scope: domain" response header to indicate that  
> the preflight response can be used for any request to the domain. Has  
> anything like this been considered?



Anne van Kesteren
Received on Wednesday, 18 April 2012 12:17:10 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:13:33 UTC