[whatwg] Canvas origin-clean should not ignore Access Control for Cross-Site Requests

Anne van Kesteren annevk at opera.com
Sat Mar 14 07:11:09 PDT 2009


On Fri, 13 Mar 2009 23:53:36 -0000, Hans Schmucker  
<hansschmucker at gmail.com> wrote:
> Question is: what would be the best way to fix it? Of course the spec
> could be changed for video and image, but wouldn't it be simpler to
> update the defintion of origins to include patterns that can represent
> allow rules?

Aside: You might want to take a look at a later version of the  
specification (the one that is being implemented):

   http://dev.w3.org/2006/waf/access-control/


-- 
Anne van Kesteren
http://annevankesteren.nl/



More information about the whatwg mailing list