- From: Ian Hickson <ian@hixie.ch>
- Date: Tue, 31 Jan 2012 23:39:14 +0000 (UTC)
On Wed, 14 Dec 2011, Ilhan Y. wrote: > > I want to propose "secure alternative connection for the current > connection". It has to me specified either by headers or by meta tag. > Examples: > > Header example: Secure: https://pay.reddit.com/ > > Meta tag example: <meta name="secure" content="https://pay.reddit.com/"> > > When a user sets his web browser to connect over secure connection if > available then the browser will redirect itself to that secure > connection. Also, this is backward capable. On Wed, 14 Dec 2011, Anne van Kesteren wrote: > > How is this different from a redirect? > > It sounds like you might be interested in > http://tools.ietf.org/html/draft-ietf-websec-strict-transport-sec > though. I haven't added anything to the spec at this time. I recommend approaching the group working on the spec Anne mentions above. -- Ian Hickson U+1047E )\._.,--....,'``. fL http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,. Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'
Received on Tuesday, 31 January 2012 15:39:14 UTC