- From: Rouslan Solomakhin <notifications@github.com>
- Date: Wed, 14 Jun 2017 17:23:28 -0700
- To: w3c/payment-handler <payment-handler@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Thursday, 15 June 2017 00:24:25 UTC
rsolomakhin commented on this pull request. > + </li> + <li>If <var>image</var>.<a data-lt="ImageObject.sizes">sizes</a> + is not a <a data-lt="ImageObject.sizes">valid value</a>, then + return an empty <a>Sequence</a> of <a>ImageObject</a>. + </li> + <li>Let <var>url</var> be the result of parsing + <var>image</var>.<a data-lt="ImageObject.src">src</a> with the + <a data-cite="!HTML#context-object">context object</a>'s + <a data-cite="!HTML#relevant-settings-object">relevant settings + object</a>'s <a data-cite="!HTML#api-base-url">API base URL</a>. + </li> + <li>If <var>url</var> is failure, then return an empty + <a>Sequence</a> of <a>ImageObject</a>. + </li> + <li>If <var>url</var>'s <a data-cite="!HTML#concept-url-scheme"> + scheme</a> is not one of "http" and "https", then return an Let's allow only HTTPS. Using HTTP is recipe for trouble in payments world. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/payment-handler/pull/174#pullrequestreview-44181327
Received on Thursday, 15 June 2017 00:24:25 UTC