W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > July 2011

[Bug 13032] "allow-plugins" option for iframe sandbox attribute

From: <bugzilla@jessica.w3.org>
Date: Fri, 08 Jul 2011 16:57:52 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1QfENE-0006pW-Qc@jessica.w3.org>
http://www.w3.org/Bugs/Public/show_bug.cgi?id=13032

--- Comment #8 from Shane Corgatelli <shane@eznettools.com> 2011-07-08 16:57:51 UTC ---
(In reply to comment #6)
> What I do think we should do is to make it clear that plugins are allowed to
> run in the sandbox, as long as the browser is sure that it satisfies the
> restrictions put upon the sandbox.
> 
> So for example if it was possible for the browser to tell Flash that it's not
> allowed to run script and not allowed to navigate any parent frames, and those
> are the only restrictions placed on a given sandbox, then the browser could run
> flash.

That works for me. From the link posted by Julian it appears that there are
already discussions for modifying the plugin API to support this.

One other use case: It appears that Google used the sandbox attribute with
their image search for a time, but apparently removed it because of the plugin
problem.
See:
http://www.google.com/support/forum/p/Webmasters/thread?tid=4ab960cdb10c9aad&hl=en

-- 
Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
Received on Friday, 8 July 2011 16:57:57 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 7 January 2015 16:31:13 UTC