Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Should we check for "same origin" or "same origin-domain"? #457

Open
rakuco opened this issue Feb 21, 2023 · 1 comment
Open

Should we check for "same origin" or "same origin-domain"? #457

rakuco opened this issue Feb 21, 2023 · 1 comment

Comments

@rakuco
Copy link
Member

rakuco commented Feb 21, 2023

The current version of the spec mentions "same origin-domain" in the context of security measures and focus requirements.

We're one of the few specs that use "same origin-domain" instead of a plain "secure origin" check/requirement, and digging through old commits and pull requests it is not clear why this choice was made.
@rakuco
Copy link
Member Author

rakuco commented Feb 21, 2023

(also relevant: w3c/compute-pressure#187)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@rakuco