Mike West

Sorry I didn't see this when you first filed it. > I understand that @mikewest still prefers cookie priorities, but no one at Mozilla has > any interest in that...

> > I think the simplest solution here (as also suggested upthread by mnot) would be that we take CSP into account for each 103 response individually. So if the...

I'm wary of changing eviction rules more than we already have. We ended up breaking some Google sites with our `Secure` prioritization, and ended up with a somewhat complicated scheme...

I don't think that any vendor has made substantial progress in this space, and I don't think waiting for someone to ship something is going to meet the goal of...

Non-ASCII cookies are certainly produced by servers out there in the wild, and accepted by several user agents (though not, apparently, Safari: https://wpt.fyi/results/cookies/http-state/charset-tests.html?label=experimental&label=master&aligned). I'm comfortable extending based on those test...

(That said, I don't think it's as simple as extending `cookie-octet`. We'll need to define the encoding, serialization, etc. in a little more detail if we're going to move outside...

No, that's clearly me screwing something up between multiple changes that I probably had in-flight at the time. Let's revert that bit. We still have to have the conversation, but...

https://github.com/httpwg/http-extensions/pull/2090

In an ideal world, it would likely make sense to work `Age` support into the cookie spec somehow. In a less-than-ideal world, I'm not actively planning on adding support to...

Hey Anne, thanks for your feedback! Should we consider this a formal objection from Mozilla, or simply a negative response? In either event, I have two thoughts: 1. The group...