W3C home > Mailing lists > Public > public-webappsec@w3.org > October 2014

[MIX] Is origin an authenticated origin?

From: Anne van Kesteren <annevk@annevk.nl>
Date: Thu, 23 Oct 2014 13:43:56 +0200
Message-ID: <CADnb78ho+3kO40vDJM4D6xDmPsWfWNk30mcvJM5Ctws3Gc=S0A@mail.gmail.com>
To: WebAppSec WG <public-webappsec@w3.org> 
When reviewing service workers I found this definition to be lacking.
It talks about origins but then it refers
https://w3c.github.io/webappsec/specs/mixedcontent/#insecure-origin
which starts talking about resources. We don't know about resources in
an algorithm that only takes an origin as parameter.


-- 
https://annevankesteren.nl/
Received on Thursday, 23 October 2014 11:44:22 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:07 UTC