W3C home > Mailing lists > Public > public-webappsec@w3.org > November 2015

Re: Suborigin update

From: Anne van Kesteren <annevk@annevk.nl>
Date: Fri, 13 Nov 2015 08:04:04 +0100
Message-ID: <CADnb78hB0He2-PKZ_PDw1gGYKeitwg8g=hpiMqh-KXmxh712dA@mail.gmail.com>
To: Joel Weinberger <jww@chromium.org>
Cc: "public-webappsec@w3.org" <public-webappsec@w3.org>, Artur Janc <aaj@google.com>
On Thu, Nov 12, 2015 at 11:43 PM, Joel Weinberger <jww@chromium.org> wrote:
> - localStorage: Every Suborigin gets a fresh localStorage jar. If that's
> problematic, can consider a 'unsafe-share-localStorage' directive.

Disabling localStorage seems more attractive than making it more
complicated since it's a synchronous IO API with racing issues.


-- 
https://annevankesteren.nl/
Received on Friday, 13 November 2015 07:04:31 UTC

This archive was generated by hypermail 2.3.1 : Monday, 23 October 2017 14:54:16 UTC