W3C home > Mailing lists > Public > public-webappsec@w3.org > July 2015

Re: CfC: Mixed Content to PR; deadline July 6th.

From: Brian Smith <brian@briansmith.org>
Date: Tue, 7 Jul 2015 11:24:57 -0400
Message-ID: <CAFewVt4HpUz_i7ASMFTza1UuV=BOp57MPt51roiep7bXpLMAPQ@mail.gmail.com>
To: Anne van Kesteren <annevk@annevk.nl>
Cc: Ryan Sleevi <sleevi@google.com>, Mike West <mkwst@google.com>, "public-webappsec@w3.org" <public-webappsec@w3.org>, Dan Veditz <dveditz@mozilla.com>, Wendy Seltzer <wseltzer@w3.org>, Brad Hill <hillbrad@gmail.com>, Kristijan Burnik <burnik@google.com>
Anne van Kesteren <annevk@annevk.nl> wrote:

> Brian Smith <brian@briansmith.org> wrote:
> > My reading of that section makes me thing that every fetch() is blocked
> by
> > step 7.2, because "fetch" is not optionally-blockable mixed content. Only
> > "video", "audio", and "img" are optionally-blockable mixed content.
> Ah, that's a bug then. :-/ This needs to work since enabling service
> workers for a site should not disable stuff that's currently working.


It's not a bug, it is what was agreed to by the group. We debated it to
death months ago and it was one of the last issues resolved before the spec
moved to CR status. I specifically called out the issue at that time so
that people could object, and the issue was resolved in favor of the
current spec text.

Received on Tuesday, 7 July 2015 15:25:25 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:49 UTC