- From: Tab Atkins Jr. <notifications@github.com>
- Date: Mon, 15 Aug 2016 16:58:31 -0700
- To: w3c/webpayments-method-identifiers <webpayments-method-identifiers@noreply.github.com>
Received on Monday, 15 August 2016 23:59:04 UTC
Okay, so this suggests that 3rd-party methods are *always* indirected thru apps, and thus origin information is what you need. (Or theoretically thru a Service Worker, where again origin-level is the correct way to go; sub-origin scoping is not a security boundary for SWs, and is considered to be a legacy mistake.) Right? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/webpayments-method-identifiers/issues/9#issuecomment-239964830
Received on Monday, 15 August 2016 23:59:04 UTC