`/.well-known/change-password` to REC? from Mike West on 2023-03-08 (public-webappsec@w3.org from March 2023)

From: Mike West <mkwst@google.com>
Date: Wed, 8 Mar 2023 10:01:36 +0100
To: "Tess O'Connor" <hober@apple.com>, Ricky Mondello <rmondello@apple.com>
Cc: Web Application Security Working Group <public-webappsec@w3.org>, Dan Veditz <dveditz@mozilla.com>
Message-ID: <CAKXHy=dtFCCC8wkHSXGShNS1T0sxDtGpakJqY=XZNH+Cp5qRyw@mail.gmail.com>

Hey folks,

We have implementations of
https://w3c.github.io/webappsec-change-password-url/ across multiple
servers, and client-side usage of that redirect in multiple browsers.

https://w3c.github.io/webappsec-change-password-url/response-code-reliability.html
is likewise "implemented" by many servers.

Is there work left to do on those documents before moving them down the
track towards REC? There are a number of issues open at
https://github.com/w3c/webappsec-change-password-url/issues/, but it's not
clear to me which of them (if any) need to be addressed before proceeding.

-mike

Received on Wednesday, 8 March 2023 09:02:00 UTC