joeyparrish
commented
3 months ago Also, much gratitude to @annevk for patiently explaining things to us and for filing https://github.com/mdn/content/issues/35488
Open joeyparrish opened 3 months ago
joeyparrish
commented
3 months ago Also, much gratitude to @annevk for patiently explaining things to us and for filing https://github.com/mdn/content/issues/35488
annevk
commented
3 months ago Every time we have expanded what no-cors can do we have regretted it. There's also a general policy that new features need to use CORS. This idea has the backing of Chrome's security team? I'm very much opposed to this.
What is the issue with the Fetch Standard?
Rangerequests are critical in media streaming applications, and I believe they should be safe for no-cors mode. I would like them to be added to the list of no-cors safelisted headers: https://fetch.spec.whatwg.org/#no-cors-safelisted-request-header-nameSee conversation in https://github.com/whatwg/fetch/issues/1310.