On Mon, May 24, 2010 at 8:23 AM, Adrian Bateman <adria...@microsoft.com> wrote: > In IE, we only support Access-Control-Allow-Origin and combining with other > values (albeit optional ones) that we don't support might be misleading. It > also introduces some additional parsing that changes the behaviour from a > simple comparison to a more complex parse and then compare.
The above statement seems to imply that there are no plans for IE to support the optional features of CORS such as pre-flight and user credentials. Am I reading the statement correctly? Thanks, --Tyler -- "Waterken News: Capability security on the Web" http://waterken.sourceforge.net/recent.html
