On Tue, 2011-03-29 at 15:12 -0700, Jonas Sicking wrote: > I'm totally fine with punting on this for the future and just > disallowing redirects on an API level for now.
+1. It has proved hard enough to get an acceptably-secure WebSocket interface on the bare minimum of features. Let's not introduce more issues by adding more features that aren't completely necessary now. -- And Clover mailto:[email protected] http://www.doxdesk.com gtalk:[email protected]
