- From: Fumitoshi Ukai <ukai@chromium.org>
- Date: Thu, 28 Jan 2010 08:12:27 +0000
May/Should WebSocket use HttpOnly cookie while Handshaking? I think it would be useful to use HttpOnly cookie on WebSocket so that we could authenticate the WebSocket connection by the auth token cookie which might be HttpOnly for security reason. http://www.ietf.org/id/draft-ietf-httpstate-cookie-02.txt -- ukai -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://lists.whatwg.org/pipermail/whatwg-whatwg.org/attachments/20100128/783bb51d/attachment.htm>
Received on Thursday, 28 January 2010 00:12:27 UTC