W3C home > Mailing lists > Public > public-webapps@w3.org > April to June 2014

[Bug 25568] New: [imports]: Respect the crossOrigin attribute

From: <bugzilla@jessica.w3.org>
Date: Tue, 06 May 2014 03:42:06 +0000
To: public-webapps@w3.org
Message-ID: <bug-25568-2927@http.www.w3.org/Bugs/Public/>

            Bug ID: 25568
           Summary: [imports]: Respect the crossOrigin attribute
           Product: WebAppsWG
           Version: unspecified
          Hardware: PC
                OS: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Component Model
          Assignee: morrita@google.com
          Reporter: pdr@google.com
        QA Contact: public-webapps-bugzilla@w3.org
                CC: adamk@chromium.org, dglazkov@chromium.org,
                    mike@w3.org, public-webapps@w3.org

The 7.4 Fetching Import section states "All imports ... must be loaded using
the fetching algorithm with request's origin set to the origin of the master
docment [SIC], the mode to CORS and the omit credentials mode to CORS."

Why is the <link> crossOrigin attribute[1] not respected here? This would allow
non-anonymous imports, for example.


You are receiving this mail because:
You are on the CC list for the bug.
Received on Tuesday, 6 May 2014 03:42:08 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:14:24 UTC