On Mon, 22 Jun 2009, Tyler Close wrote: > > > Sure, this forces us into designs that suck and generally are > > suboptimal. > > If they suck enough, they won't be used widely and so just create > additional attack surface area, without providing useful functionality.
I agree, but I don't think we're anywhere near that with CORS. > I suspect the extra round-trips in CORS will cause many developers to > simply avoid using that part of CORS; especially since it's not > supported under IE. Wide implementation support is a prerequisite for any feature to get used, indeed. -- Ian Hickson U+1047E )\._.,--....,'``. fL http://ln.hixie.ch/ U+263A /, _.. \ _\ ;`._ ,. Things that are impossible just take longer. `._.-(,_..'--(,_..'`-.;.'
