- From: Ian Melven <imelven@mozilla.com>
- Date: Tue, 8 May 2012 12:34:46 -0700 (PDT)
- To: public-webapps@w3.org
- Cc: Sid Stamm <sid@mozilla.com>, Tom Lowenthal <tom@mozilla.com>
Hi, i'd like to propose that the Do Not Track header (see http://www.w3.org/TR/tracking-dnt/#dnt-header-field) "DNT" be added to the list of request headers not allowed to be set via XHR's setRequestHeader method (see http://dvcs.w3.org/hg/xhr/raw-file/tip/Overview.html#the-setrequestheader%28%29-method) there is an additional question of whether a user's Do Not Track setting in the user agent should also be added to requests made by XHR - the DNT spec says "A user agent must send the DNT header field on all HTTP requests if (and only if) a tracking preference is enabled" which would seem to include XHR... thanks, ian
Received on Wednesday, 9 May 2012 21:28:15 UTC