Updates:
Labels: -Type-Defect Type-Enhancement
Comment #1 on issue 1739 by [email protected]: Consider using
XmlHttpRequest({anon: true})
http://code.google.com/p/google-caja/issues/detail?id=1739
Sounds nice. It would make sense for the URI policy to be able to permit
certain URLs only if the request can be made 'anonynmously'; otherwise if
browser support isn't universal, hosts can't rely on this as a security
feature.
--
You received this message because this project is configured to send all
issue notifications to this address.
You may adjust your notification preferences at:
https://code.google.com/hosting/settings
--
---
You received this message because you are subscribed to the Google Groups "Google Caja Discuss" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
