Closed Bug 416957 Opened 13 years ago Closed 13 years ago

implement support for Access-Control-Policy-Path

Categories

(Core :: XML, defect)

Product:
Core
Component:
XML
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WONTFIX

People

(Reporter: sicking, Assigned: suryaismail)

References

Details

Attachments

(1 file)

Policy path implementation
35.67 KB, patch
Details | Diff | Splinter Review 
We need to implement support for the Access-Control-Policy-Path. This is used during the initial OPTIONS request to allow the policy to be specified for whole directories rather than for a single resource.

There are two parts to this:

First of all we need to perform an OPTIONS request to the specified path.

Second, we need to make sure to do caching appropriately. This includes deleting all entries with a more specific path, as well as checking the cache at all possible ancestor paths when doing a lookup in the cache.

Surya, do you think you could have a look at this? Let me know if you have any questions.
Anyone have any docs for server side java-script with mochikit? Really need to add some tests.
This feature was removed from the spec due to security concerns (mostly around IIS, but possibly other servers too).

Might make a comeback in later versions of the spec if we can figure out how to work around serverside security issues.
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → WONTFIX
You need to log in before you can comment on or make changes to this bug.