|
457 | 457 | font-style: normal; |
458 | 458 | } |
459 | 459 | dt dfn code, code.idl { |
460 | | - font-size: inherit; |
| 460 | + font-size: normal; |
461 | 461 | } |
462 | 462 | dfn var { |
463 | 463 | font-style: normal; |
|
1436 | 1436 | <div class="head"> |
1437 | 1437 | <p data-fill-with="logo"><a class="logo" href="https://www.w3.org/"> <img alt="W3C" height="48" src="https://www.w3.org/StyleSheets/TR/2016/logos/W3C" width="72"> </a> </p> |
1438 | 1438 | <h1>Secure Contexts</h1> |
1439 | | - <h2 class="no-num no-toc no-ref heading settled" id="subtitle"><span class="content">Editor’s Draft, <time class="dt-updated" datetime="2016-08-02">2 August 2016</time></span></h2> |
| 1439 | + <h2 class="no-num no-toc no-ref heading settled" id="subtitle"><span class="content">Editor’s Draft, <time class="dt-updated" datetime="2016-08-20">20 August 2016</time></span></h2> |
1440 | 1440 | <div data-fill-with="spec-metadata"> |
1441 | 1441 | <dl> |
1442 | 1442 | <dt>This version: |
@@ -2113,7 +2113,7 @@ <h3 class="heading settled" data-level="3.2" id="is-origin-trustworthy"><span cl |
2113 | 2113 | can generally trust as delivering data securely.</p> |
2114 | 2114 | <p>This algorithms considers certain hosts, scheme, and origins as potentially |
2115 | 2115 | trustworthy, even though they might not be authenticated and encrypted in the |
2116 | | - traditional sense. In particular, the user agent SHOULD treat <code>file</code> URLs and |
| 2116 | + traditional sense. In particular, the user agent SHOULD treat <code>file</code> URLs |
2117 | 2117 | as potentially trustworthy. In principle the user agent could treat local |
2118 | 2118 | files as untrustworthy, but, <em>given the information that is available to |
2119 | 2119 | the user agent at runtime</em>, the resources appear to have been transported |
@@ -2152,7 +2152,7 @@ <h3 class="heading settled" data-level="3.2" id="is-origin-trustworthy"><span cl |
2152 | 2152 | "<code>Potentially Trustworthy</code>".</p> |
2153 | 2153 | <p class="note" role="note">Note: See <a href="#development-environments">§7.2 Development Environments</a> for detail here.</p> |
2154 | 2154 | <li data-md=""> |
2155 | | - <p>Return "<code>Not Trusted</code>".</p> |
| 2155 | + <p>Return "<code>Not Trustworthy</code>".</p> |
2156 | 2156 | </ol> |
2157 | 2157 | <p class="note" role="note">Note: Neither <var>origin</var>’s <a data-link-type="dfn" href="https://www.w3.org/TR/html51/browsers.html#origin-domain">domain</a> nor <a data-link-type="dfn" href="https://www.w3.org/TR/html51/browsers.html#origin-port">port</a> has any effect on whether or not it is considered to be a <a data-link-type="dfn" href="#secure-context" id="ref-for-secure-context-26">secure context</a>.</p> |
2158 | 2158 | <h3 class="heading settled" data-level="3.3" id="is-url-trustworthy"><span class="secno">3.3. </span><span class="content"> Is <var>url</var> potentially trustworthy? </span><a class="self-link" href="#is-url-trustworthy"></a></h3> |
@@ -2303,7 +2303,7 @@ <h3 class="heading settled" data-level="7.2" id="development-environments"><span |
2303 | 2303 | <p>In order to support developers who run staging servers on non-loopback hosts, |
2304 | 2304 | the user agent MAY allow users to configure specific sets of origins as |
2305 | 2305 | trustworthy, even though <a href="#is-origin-trustworthy">§3.2 Is origin potentially trustworthy?</a> would normally return |
2306 | | - "<code>Not Trusted</code>".</p> |
| 2306 | + "<code>Not Trustworthy</code>".</p> |
2307 | 2307 | <h3 class="heading settled" data-level="7.3" id="new"><span class="secno">7.3. </span><span class="content">Restricting New Features</span><a class="self-link" href="#new"></a></h3> |
2308 | 2308 | <p><em>This section is non-normative.</em></p> |
2309 | 2309 | <p>When writing a specification for new features, we recommend that authors |
@@ -2557,7 +2557,7 @@ <h3 class="no-num no-ref heading settled" id="informative"><span class="content" |
2557 | 2557 | <dt id="biblio-mediacapture-streams">[MEDIACAPTURE-STREAMS] |
2558 | 2558 | <dd>Daniel Burnett; et al. <a href="https://w3c.github.io/mediacapture-main/">Media Capture and Streams</a>. 19 May 2016. CR. URL: <a href="https://w3c.github.io/mediacapture-main/">https://w3c.github.io/mediacapture-main/</a> |
2559 | 2559 | <dt id="biblio-mix">[MIX] |
2560 | | - <dd>Mike West. <a href="https://w3c.github.io/webappsec/specs/mixedcontent/">Mixed Content</a>. 8 October 2015. CR. URL: <a href="https://w3c.github.io/webappsec/specs/mixedcontent/">https://w3c.github.io/webappsec/specs/mixedcontent/</a> |
| 2560 | + <dd>Mike West. <a href="https://w3c.github.io/webappsec-mixed-content/">Mixed Content</a>. 2 August 2016. CR. URL: <a href="https://w3c.github.io/webappsec-mixed-content/">https://w3c.github.io/webappsec-mixed-content/</a> |
2561 | 2561 | <dt id="biblio-powerful-new-features">[POWERFUL-NEW-FEATURES] |
2562 | 2562 | <dd>Chrome Security Team. <a href="https://www.chromium.org/Home/chromium-security/prefer-secure-origins-for-powerful-new-features">Prefer Secure Origins For Powerful New Features</a>. URL: <a href="https://www.chromium.org/Home/chromium-security/prefer-secure-origins-for-powerful-new-features">https://www.chromium.org/Home/chromium-security/prefer-secure-origins-for-powerful-new-features</a> |
2563 | 2563 | <dt id="biblio-rfc6265">[RFC6265] |
|
0 commit comments