[whatwg] Fetch: crossorigin="anonymous" and XMLHttpRequest

Anne van Kesteren annevk at annevk.nl
Tue Feb 26 03:35:35 PST 2013

There's an unfortunate mismatch currently. new
XMLHttpRequest({anon:true}) will generate a request where a) origin is
a globally unique identifier b) referrer source is the URL
about:blank, and c) credentials are omitted. From those
crossorigin="anonymous" only does c. Can we still change
crossorigin="anonymous" to match the anonymous flag semantics of
XMLHttpRequest or is it too late?


More information about the whatwg mailing list