W3C home > Mailing lists > Public > public-webappsec@w3.org > July 2014

Re: CfC to publish FPWD on Referrer Policy.

From: Brad Hill <hillbrad@gmail.com>
Date: Mon, 21 Jul 2014 12:30:23 -0700
Message-ID: <CAEeYn8jfGpLSCLvARsN3bJ3Sn4ze+=YhqZD6Am5u_A9OqnaBvw@mail.gmail.com>
To: Jochen Eisinger <eisinger@google.com>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>, Brad Hill <bhill@paypal.com>, Dan Veditz <dveditz@mozilla.com>, Wendy Seltzer <wseltzer@w3.org>
Thanks, Jochen.

I support this call for consensus.  I've opened some GitHub issues against it.

I think the most important one is that it be clear that the algorithm
of the "None When Downgrade" policy also applies for "Origin Only" and
"Origin When Cross-Origin" policies.

-Brad

On Mon, Jul 21, 2014 at 3:59 AM, Jochen Eisinger <eisinger@google.com> wrote:
> This is a call for consensus to publish the following draft of Referrer
> Policy as a First Public Working Draft:
>
> http://w3c.github.io/webappsec/specs/referrer-policy/
>
> Referrer Policy describes how user agents determine the value of the
> "referer" header associated with request from a document, and navigations
> away from that document. There's still work to be done, but I believe it
> clearly falls under the group's charter, and is ready for initial
> publication. Do you agree?
>
> Please send any and all comments to public-webappsec@w3.org. This CfC will
> end with our next call, on July 30, 2014.
>
> best
> -jochen
Received on Monday, 21 July 2014 19:30:51 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:06 UTC