Re: UPGRADE: 'HTTPS' header causing compatibility issues.

On 8 July 2015 at 07:53, Mike West <mkwst@google.com> wrote:
> `upgrade-insecure-requests: 1`, going once, going twice...


OK, I'll bite.  -requests seems unnecessarily verbose.  I mean, yes,
we do want to be precise and clear, but `upgrade-insecure` seems
enough; though only if you also change the CSP directive name I
suppose.

Received on Wednesday, 8 July 2015 16:30:19 UTC