Permalink
Commits on Mar 23, 2017
  1. Rewrite HTTP cache integration

    In particular:
    
    * Be more specific about terminology
    * Detail more clearly how requests are to be modified
    
    Tests: w3c/web-platform-tests#5137.
    
    During review we decided to postpone #144 (poorly implemented if at all) and #307 (also poorly implemented despite security implications).
    
    Fixes #336 and fixes #373.
    mnot committed with annevk Mar 23, 2017
Commits on Mar 21, 2017
  1. Editorial: move some terminology from the URL Standard here

    In particular:
    
    * local scheme
    * is local
    * HTTP(S) scheme
    * network scheme
    * fetch scheme
    
    Fixes part of whatwg/url#241.
    annevk committed on GitHub Mar 21, 2017
Commits on Mar 20, 2017
  1. Do not always set the recursive flag in HTTP-redirect fetch

    Also keep “includes credentials” steps next to each other by moving
    another step and update origin terminology.
    
    Fixes whatwg/html#2396.
    annevk committed Mar 7, 2017
Commits on Mar 13, 2017
Commits on Mar 10, 2017
  1. Meta: remove for=websocket

    Fixes #500.
    annevk committed Mar 10, 2017
  2. Change combine and combined value to use 0x2C 0x20 (#504)

    Instead of just 0x2C, use 0x2C 0x20 somewhat consistently (except where we can't and point it out) as that is what XMLHttpRequest implementations have always done and nobody likes too much change.
    
    Tests: w3c/web-platform-tests#5115.
    
    Fixes the Fetch part of whatwg/xhr#108 and whatwg/xhr#109.
    annevk committed on GitHub Mar 10, 2017
Commits on Mar 9, 2017
  1. Editorial: name mimeType variable consistently

    Also export “extract a MIME type” as “extracting a MIME type”.
    annevk committed Mar 9, 2017
Commits on Mar 7, 2017
  1. Split up media into video, audio and track

    This splits up the `media` destination into three distinct destinations:
    `video`, `audio` and `track`.
    
    The reason for that is that track is quite different from video and
    audio, and at least in Chromium, treating it internally as
    a media resource type is problematic.
    
    This change would allow type specific checks for track.
    yoavweiss committed with annevk Dec 16, 2016
  2. Response's trailer cannot use [SameObject]

    Since an attribute that returns a promise can be made to return a
    rejecting promise as well. (We really need [Cached] or some such.)
    
    Tests: w3c/web-platform-tests#4811.
    
    Fixes #473.
    annevk committed Feb 13, 2017
Commits on Feb 25, 2017
  1. Enforce limit on inflight keepalive bytes

    Requests with keepalive flag set are allowed to outlive the environment settings object. We want to make sure that such requests do not negatively impact the user experience when a page is unloaded, etc.
    
    This limits the amount of (body) bytes that can be inflight at any point when the request has the keepalive flag set; this flag is also set by sendBeacon().
    
    Background: w3c/beacon#39.
    
    Tests: w3c/web-platform-tests#4878.
    igrigorik committed with annevk Feb 25, 2017
Commits on Feb 22, 2017
  1. Breaking: redo value parsing as value extraction

    We now have two separate algorithms that can be used rather than one
    with type confusion:
    
    * “extracting header values” (takes a header)
    * “extracting header list values” (takes a name and a header list)
    
    Fixes #474.
    annevk committed Feb 22, 2017
  2. Clarify the ABNF flavor in use

    Fixes #489.
    annevk committed Feb 14, 2017
  3. Stop lowercasing header names

    Instead compare header names using a byte-case-insensitive match and lowercase them when exposed through the API.
    
    Tests: w3c/web-platform-tests#4956.
    
    Fixes #203 and fixes #304.
    annevk committed on GitHub Feb 22, 2017
Commits on Feb 17, 2017
  1. Block ftp URL requests from non-FTP clients

    Usage of the FTP protocol when requesting subresources from non-FTP
    clients has slowly declined over the last few years to the point where
    it represents a negligible amount of traffic[1]. The protocol does not
    support modern requirements, like encryption, and there's interest from
    at least one browser vendor in removing support for FTP from their
    network stack entirely in general[2].
    
    To that end, this patch alters Fetch to block FTP subresources from
    webby clients. That is, a page delivered from http://example.com/
    will receive a network error response to requests like those generated
    from <img src='ftp://example.com/image.png'>.
    
    [1]: https://www.chromestatus.com/metrics/feature/timeline/popularity/531
    [2]: https://groups.google.com/a/chromium.org/forum/#!msg/blink-dev/bIJdwwoQ98U/-F1aL2FgBAAJ
    
    Test issue: w3c/web-platform-tests#4751.
    mikewest committed with annevk Feb 17, 2017
Commits on Feb 14, 2017
  1. Replace skip-service-worker flag with service-workers mode

    This allows certain fetches within service workers to trigger fetch events. It also makes interception of redirects by foreign fetch possible.
    
    Tests: w3c/web-platform-tests#4518.
    
    Related service worker PR: w3c/ServiceWorker#1025.
    
    Fixes #303 and fixes #362.
    jakearchibald committed with annevk Feb 14, 2017
Commits on Feb 8, 2017
Commits on Feb 7, 2017
  1. Meta: update spec deploy and editing infrastructure

    - Updates to the deduplicated deploy script; part of whatwg/meta#11
    - As such, stops deploying commit snapshots for branches
    - Fixes .travis.yml syntax; part of whatwg/meta#4
    - Adds .gitattributes and .editorconfig; part of whatwg/meta#7
    annevk committed Feb 2, 2017
Commits on Feb 1, 2017
Commits on Jan 30, 2017
Commits on Jan 27, 2017
Commits on Jan 19, 2017
  1. Only set Access-Control-Request-Headers when its value is non-empty

    This is how it used to be in the now-obsolete CORS specification. What the Fetch Standard said before this commit is causing subtle issues on servers.
    
    Tests: w3c/web-platform-tests#4556.
    
    Fixes #459.
    annevk committed on GitHub Jan 19, 2017
Commits on Jan 17, 2017
  1. Define header value inline

    HTTP is taking too long to sort this out.
    
    Tests: w3c/web-platform-tests#4525.
    
    Fixes #332.
    annevk committed Jan 12, 2017
  2. Stream-based requests (Request with ReadableStream)

    Basic tests: w3c/web-platform-tests#4362. More tests are expected to be written as part of the implementation effort.
    
    Fixes #88, fixes yutakahirano/fetch-with-streams#10, fixes yutakahirano/fetch-with-streams#57, and fixes yutakahirano/fetch-with-streams#66.
    yutakahirano committed with annevk Jan 17, 2017
Commits on Jan 16, 2017
Commits on Jan 10, 2017
  1. Editorial: stop placing Acknowledgments last

    See whatwg/infra#47 for details.
    annevk committed Jan 10, 2017
Commits on Jan 6, 2017
  1. Specify "transmit body for a request"

    Fixes #441.
    yutakahirano committed with annevk Jan 6, 2017
Commits on Jan 3, 2017
  1. Editorial: add a missing "is" to section 3.1 Origin header

    eb89fcd changed the phrasing in section 3.1, but is missing a word in the note about the Origin header.
    rakuco committed with annevk Jan 3, 2017
Commits on Dec 30, 2016
Commits on Dec 20, 2016
Commits on Dec 19, 2016
  1. Only use nosniff for "script" and "style"

    For “image” it was not web-compatible and checking the others doesn’t
    seem worth it given there are no known issues with sniffing there.
    
    Tests: w3c/web-platform-tests#4356.
    
    Closes #395.
    annevk committed on GitHub Dec 19, 2016
Commits on Dec 16, 2016
  1. Editorial: fix referrer policy reference

    Closes #432. (Also cleanup UTF-8 mentions.)
    annevk committed Dec 16, 2016