- From: Marcos Caceres <w3c@marcosc.com>
- Date: Mon, 14 May 2012 17:47:39 +0100
- To: Anant Narayanan <anant@mozilla.com>
- Cc: public-webapps <public-webapps@w3.org>
On Monday, 14 May 2012 at 17:44, Anant Narayanan wrote: > > We've previously discussed enforcing serving manifests over HTTPS, but > it may not be appropriate to put this into the spec itself. Different > user agents may choose to do different things, ranging from disallowing > installs over HTTP or warning the user before proceeding. I agree - trying to enface this in the spec would be unhelpful. Would make, for instance, testing really annoying because devs would need to shell out a bunch of money for a static IP and an SSL cert. -- Marcos Caceres http://datadriven.com.au
Received on Monday, 14 May 2012 16:48:14 UTC