- From: Anne van Kesteren <annevk@annevk.nl>
- Date: Thu, 3 Jul 2014 19:13:05 +0200
- To: Devdatta Akhawe <dev.akhawe@gmail.com>
- Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>
On Thu, Jul 3, 2014 at 7:03 PM, Devdatta Akhawe <dev.akhawe@gmail.com> wrote: > Forgive me, but the way I read it---payload body is message body with > transfer encoding removed. That still leaves the gzip > content-encoding, right? My bad. Somewhat embarrassing that this keeps tripping me up. >> No, XMLHttpRequest, <img>, and such do, > > so, to be sure, you are saying XHR'ing a .tar.gz file will give me the > un-gziped version of the file? Depends on the headers used. But if it's a content coding, yes. >> It seems HTML does not define this in detail at the moment. That would >> need to be fixed. > > Yup. And I am hoping once the other specs define all these things in > detail, SRI won't need to. SRI can just refer to the other specs. Well, ideally we integrate most of SRI into the other specs so it would indeed become self-evident. -- http://annevankesteren.nl/
Received on Thursday, 3 July 2014 17:13:39 UTC