[whatwg] Proposal: location.parentOrigin

• From: Adam Barth <w3c@adambarth.com>
• Date: Thu, 5 Apr 2012 14:06:23 -0700
• Message-ID: <CAJE5ia8pnaay=ZMwARSPCoavaT5JmLaDUyUQHpPQt2ewD5vtoQ@mail.gmail.com>

My sense is that's an acceptable risk given that this information commonly
leaks in document.referrer anyway.  Using sandbox sounds like a worthwhile
backstop though.

Adam

Received on Thursday, 5 April 2012 14:06:23 UTC