There is in fact some draft language around this kind of a mechanism to update a... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gregable on April 17, 2019 \| parent \| context \| favorite \| on: AMP pages displaying your own domain There is in fact some draft language around this kind of a mechanism to update a signature to extend the lifetime of the document by fetching a remote URL. See https://tools.ietf.org/id/draft-yasskin-http-origin-signed-r... . Doing this on every page load breaks either user privacy (by making the origin fetch before the user clicks) or the preload performance gain itself (by blocking load while waiting for this round trip).

e12e on April 18, 2019 [–]

But if the signature is expired, preload would fail anyway, which would trigger a regular load "on click" - but that click should maybe result in a head request for possibly just getting an updated signature?

gregable on April 20, 2019 | [–]

The intermediary (Google in this case) can choose not to serve an expired exchange.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact