ISSUE-71: IIS and Access-Control-Policy-Path
IIS and Access-Control-Policy-Path
- State:
- CLOSED
- Product:
- HISTORICAL: CORS [this spec uses Bugzilla for Bug/Issue tracking http://tinyurl.com/Bugz-CORS]
- Raised by:
- Anne van Kesteren
- Opened on:
- 2008-06-06
- Description:
- IIS servers have an issue in that resources can be addressed by several distinct URIs as explained in this e-mail:
http://lists.w3.org/Archives/Public/public-appformats/2008May/0039.html
This impacts the design of Access-Control-Policy-Path to some extent. Two proposals have been put forward by members of the WG to address this issue:
A. If a URI (also one given during redirects, etc.) contains the "\.." sequence (or the escaped form) apply the generic network error steps.
B. Warn against using the Access-Control-Policy-Path feature in servers that exhibit this behavior. - Related Actions Items:
- No related actions
- Related emails:
- Re: Call for Exclusions: DOM Parsing and Serialization (from art.barstow@nokia.com on 2013-12-10)
- Re: Objection to publishing DOM Parsing and Serialization (was Re: CfC: publish LCWD of DOM Parsing and Serialization; deadline December 3) (from art.barstow@nokia.com on 2013-12-07)
- Re: Objection to publishing DOM Parsing and Serialization (was Re: CfC: publish LCWD of DOM Parsing and Serialization; deadline December 3) (from ij@w3.org on 2013-12-07)
- Re: Objection to publishing DOM Parsing and Serialization (was Re: CfC: publish LCWD of DOM Parsing and Serialization; deadline December 3) (from art.barstow@nokia.com on 2013-12-07)
Related notes:
Moved to Issue #12 in the Web Application WG's Issues database:
<http://www.w3.org/2008/webapps/track/issues/12>
Display change log