Skip to content

Nail down URL globbing #3

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
slightlyoff opened this issue Feb 7, 2013 · 2 comments
Closed

Nail down URL globbing #3

slightlyoff opened this issue Feb 7, 2013 · 2 comments
Labels
lifecycle needs spec no impact (blink)
Milestone
Version 1

Comments

@slightlyoff
Copy link
Contributor

The plan in discussion is to lift matching from CSP: http://w3c.github.io/webappsec/specs/content-security-policy/csp-specification.dev.html#matching

However, this isn't a complete match as we only allow same-origin URLs as scopes and our path matching needs to determine a "longest prefix" match in some way.
@db1342 db1342 closed this as completed Apr 16, 2013
@db1342 db1342 reopened this Apr 16, 2013
@slightlyoff slightlyoff mentioned this issue Aug 24, 2013
Closed
@slightlyoff
Copy link
Contributor Author

We've got a discussion for longest-prefix match in the explainer, but leaving this open until it's in the spec proper.

One (perhaps) sticky point: many servers have the behavior of treating "/app" and "/app/" the same. It's common enough that we might choose to add something like it for patterns like "/app/*".

Thoughts?

@slightlyoff
Copy link
Contributor Author

Per today's f2f discussion, this is your app's responsibility. Closing and marking todoc.

@slightlyoff slightlyoff mentioned this issue Apr 16, 2014
Closed
@jungkees jungkees mentioned this issue Oct 22, 2014
Closed
@slightlyoff slightlyoff added this to the Version 1 milestone Oct 28, 2015
@mfalken mfalken mentioned this issue Feb 8, 2018
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
lifecycle needs spec no impact (blink)
Projects
None yet
Milestone
Version 1
Development

No branches or pull requests
3 participants
@slightlyoff @db1342 @KenjiBaheux