[Bug 25972] New: Please require a secure origin from bugzilla@jessica.w3.org on 2014-06-04 (public-webcrypto@w3.org from June 2014)

From: <bugzilla@jessica.w3.org>
Date: Wed, 04 Jun 2014 08:04:16 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-25972-7213@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=25972

            Bug ID: 25972
           Summary: Please require a secure origin
           Product: Web Cryptography
           Version: unspecified
          Hardware: PC
                OS: All
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Web Cryptography API Document
          Assignee: sleevi@google.com
          Reporter: annevk@annevk.nl
                CC: public-webcrypto@w3.org

As with service workers implementations want to require a secure origin in
order to get access to cryptographic functionality. We should make that a
requirement in the specification so that implementations do not have to reverse
engineer each other.

In particular you want to refer to the origin of
http://www.whatwg.org/specs/web-apps/current-work/multipage/webappapis.html#entry-settings-object

Secure origin is defined by https://w3c.github.io/webappsec/specs/mixedcontent/

Ryan probably knows which flavor of secure origin is to be used here.

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Wednesday, 4 June 2014 08:04:18 UTC