Thanks a lot for bringing this to WG attention. It seems that I misread that point when I first wrote the draft. Actually the same is true for IE. I corrected the ABNF in the new version to reflect IE and Mozilla behavior. Best regards and thanks a lot for catching this! Tobias
On 12/02/13 06:09, Hill, Brad wrote: > This bug at Mozilla was recently brought to my attention: > > https://bugzilla.mozilla.org/show_bug.cgi?id=836132 > > It seems to indicate that the specified EBNF of using a colon between > "ALLOW-FROM" and the URI is not the actual behavior of most user agents that > implement that functionality. > > Perhaps we should update this to reflect the predominant implementation in > the field. (Internet Explorer's) > > -Brad > >> -----Original Message----- >> From: [email protected] [mailto:[email protected]] On >> Behalf Of Yoav Nir >> Sent: Tuesday, January 29, 2013 5:30 AM >> To: Julian Reschke >> Cc: IETF WebSec WG >> Subject: Re: [websec] WGLC feedback for X-Frame-Options >> >> Yes. Tobias will submit a revised version soon, incorporating the WGLC >> comments. >> >> Yoav >> >> On Jan 29, 2013, at 3:20 PM, Julian Reschke <[email protected]> >> wrote: >> >>> On 2012-11-06 18:25, Julian Reschke wrote: >>>> Hi there, >>>> >>>> here's my feedback from the HTTP/editorial point of view: >>>> ... >>> Just checking: is the WG still working on this draft? There doesn't seem to >> be any activity since October 2012... >> _______________________________________________ >> websec mailing list >> [email protected] >> https://www.ietf.org/mailman/listinfo/websec _______________________________________________ websec mailing list [email protected] https://www.ietf.org/mailman/listinfo/websec
