On Fri, Jan 8, 2010 at 3:36 PM, Tyler Close <[email protected]> wrote: > On Fri, Jan 8, 2010 at 1:41 PM, Adam Barth <[email protected]> wrote: >> What happens with Set-Cookie headers included in uniform responses? >> It seems like we ought to ignore them based on the principle that UMP >> requests are made from a state store / context that is completely >> separate from the user agents normal state store / context. > > That's a good point. I'll add text to that effect.
This new text is at: http://dev.w3.org/2006/waf/UMP/#state-changes I've also removed the recommendation to omit headers about the user-agent. http://dev.w3.org/2006/waf/UMP/#request-sending Thanks, --Tyler -- "Waterken News: Capability security on the Web" http://waterken.sourceforge.net/recent.html
