W3C home > Mailing lists > Public > public-webappsec@w3.org > June 2015

[Bug 28861] New: Section 6.2 Preflight Request, step 10, second note: "Access-Control-Allow-Headers" instead of "Access-Control-Request-Headers"

From: <bugzilla@jessica.w3.org>
Date: Sun, 28 Jun 2015 18:28:57 +0000
To: public-webappsec@w3.org
Message-ID: <bug-28861-4874@http.www.w3.org/Bugs/Public/>
https://www.w3.org/Bugs/Public/show_bug.cgi?id=28861

            Bug ID: 28861
           Summary: Section 6.2 Preflight Request, step 10, second note:
                    "Access-Control-Allow-Headers" instead of
                    "Access-Control-Request-Headers"
           Product: WebAppsSec
           Version: unspecified
          Hardware: All
                OS: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: CORS
          Assignee: annevk@annevk.nl
          Reporter: claude.pache@gmail.com
        QA Contact: dave.null@w3.org
                CC: mike@w3.org, public-webappsec@w3.org

In http://www.w3.org/TR/cors/#resource-preflight-requests
Section 6.2 Preflight Request, step 10, second Note:

  "Since the list of headers can be unbounded, simply returning supported
headers from Access-Control-Allow-Headers can be enough."

s/Access-Control-Allow-Headers/Access-Control-Request-Headers/

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Received on Sunday, 28 June 2015 18:28:59 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:13 UTC