[e] (0) Mention CORS in text/event-stream security considerations.

Fixing http://www.w3.org/Bugs/Public/show_bug.cgi?id=13155 git-svn-id: http://svn.whatwg.org/webapps@6369 340c8d12-0b0e-0410-8428-c7bf67bfef74
whatwg · Aug 4, 2011 · e9f504e · e9f504e
1 parent 56cf59c
commit e9f504e
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 6 deletions.
diff --git a/complete.html b/complete.html
@@ -80275,9 +80275,8 @@ <h5 id=text/event-stream><span class=secno>11.2.9.1 </span><dfn><code>text/event
 
     <p>An event stream from an origin distinct from the origin of the
     content consuming the event stream can result in information
-    leakage. To avoid this, user agents are required to <!--v2: apply
-    CORS semantics or--> block all cross-origin loads. <!--v2: <a
-    href="#refsCORS">[CORS]</a>--></p>
+    leakage. To avoid this, user agents are required to apply CORS
+    semantics. <a href=#refsCORS>[CORS]</a></p>
 
     <p>Event streams can overwhelm a user agent; a user agent is
     expected to apply suitable restrictions to avoid depleting local

diff --git a/source b/source
@@ -90854,9 +90854,8 @@ data:&nbsp;test</pre>
 
     <p>An event stream from an origin distinct from the origin of the
     content consuming the event stream can result in information
-    leakage. To avoid this, user agents are required to <!--v2: apply
-    CORS semantics or--> block all cross-origin loads. <!--v2: <a
-    href="#refsCORS">[CORS]</a>--></p>
+    leakage. To avoid this, user agents are required to apply CORS
+    semantics. <a href="#refsCORS">[CORS]</a></p>
 
     <p>Event streams can overwhelm a user agent; a user agent is
     expected to apply suitable restrictions to avoid depleting local