[whatwg] Canvas origin-clean should not ignore Access Control for Cross-Site Requests
Anne van Kesteren
annevk at opera.com
Sat Mar 14 07:11:09 PDT 2009
On Fri, 13 Mar 2009 23:53:36 -0000, Hans Schmucker
<hansschmucker at gmail.com> wrote:
> Question is: what would be the best way to fix it? Of course the spec
> could be changed for video and image, but wouldn't it be simpler to
> update the defintion of origins to include patterns that can represent
> allow rules?
Aside: You might want to take a look at a later version of the
specification (the one that is being implemented):
http://dev.w3.org/2006/waf/access-control/
--
Anne van Kesteren
http://annevankesteren.nl/
More information about the whatwg
mailing list