-
Notifications
You must be signed in to change notification settings - Fork 27
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Added IANA considerations section for HTTP header #171
Conversation
Note: I think I've fumbled the requested status of the registration a bit. It makes sense to a layperson like me to request a If someone with more experience on this administrative work could tell me which status would be correct, I'll happily update either this PR or the registration request. |
I'm not really familiar with the whole IANA registration process and overlap with web platform specifications. Is it common for web specifications to have a considerations section that defines new headers that have not yet been added formally? |
Some people like IANA sections in specifications, but you can also just register directly without doing that. That's what Fetch does for instance. |
Ah, yeah I personally think that is best then. Given the request, I'm thinking we can close this. Is that OK with you @stiiin ? |
I'm OK with any action that helps to get the registry updated! :) The reason I made this PR was because @mikewest suggested this way forward, in response to @simoneonofri contacting the working group. Since Mike mentioned two former editors, as well as mentioning that he's on vacation himself, I figured I might as well submit a patch ahead of time. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think adding this is pretty reasonable, but I don't have strong feelings about it if it's not actually required. My (very vague!) understanding was that each document's IANA instructions were the formal justification for the registration, but if that's unnecessary I'm happy to avoid it here (and, I suppose, remove the relevant sections from other webappsec specs).
I'd defer to @mnot and @simoneonofri for IETF and W3C opinions, respectively. If they deem this unnecessary, let's drop it. If not, I'm happy with the patch modulo the nit I left as a comment.
From the registry expert standpoint: I don't need it in the document (although that's nice just for posterity). What's important is that the WG is aware of and OK with the request. |
Likewise. If @mikewest doesn't have strong opinions, I vote we proceed with the request as usual, and close this PR out since the changes here are not needed for the request to proceed. |
Closing as suggested. |
This change adds an IANA Considerations section, with the intent to register the Referrer-Policy HTTP header. This should move #168 along.
-@stiiin
Preview | Diff