W3C home > Mailing lists > Public > public-webappsec@w3.org > May 2016

Re: Cookies in Suborigins

From: Joel Weinberger <jww@chromium.org>
Date: Wed, 18 May 2016 17:14:46 +0000
Message-ID: <CAHQV2K=oqtnhuAi9nTyc+Tz-GgxSsT_Rbx5qkSACe_b7spDeMQ@mail.gmail.com>
To: "public-webappsec@w3.org" <public-webappsec@w3.org>
Sorry, it was pointed out to me by Dev that I really meant that we're
proposing the "Leave network cookies untouched, set document.cookie to
undefined" (not the one I mentioned in the original email). That's what I
get for writing a late night email from bed :-/

On Tue, May 17, 2016 at 11:00 PM Joel Weinberger <jww@chromium.org> wrote:

> Hi everyone. Per our conversation at the Face-to-Face today, here is the
> document that's the result of our discussion on cookies in Suborigins:
> https://docs.google.com/document/d/1v4Oa9qH4BThWF-ZVI0FllQYPgNquyvy5-lHdFnIbkRY/edit?usp=sharing
> Our proposal is to initially go with the "Leave network cookies untouched,
> new document.cookie jar" approach. Please don't hesitate to ask for
> clarifications or give your thoughts.
> --Joel
Received on Wednesday, 18 May 2016 17:15:24 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 18:54:56 UTC