Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
In looking into this text and the related specifications I decided that it would be better to address the risk of request forgery in the protocol specifications. Right now, they say nothing about this problem, but they really should. I'm going to open an issue. On the assumption that the protocol documents address this problem adequately, then this document doesn't need to concern itself with the problem. It is enough to remove any false claims and defer to the protocol spec. This contains a tweak to the adjacent text for the Origin field (w3c#368), but it doesn't fix that issue. Closes w3c#175.
- Loading branch information