W3C home > Mailing lists > Public > public-html@w3.org > January 2010

Re: <iframe> operation

From: Joe D Williams <joedwil@earthlink.net>
Date: Sun, 24 Jan 2010 14:09:41 -0800
Message-ID: <1440362D35394821A582E8E53E8869A5@joe1446a4150a8>
To: "Adam Barth" <w3c@adambarth.com>
Cc: <public-html@w3.org>
Hi Adam,
Just to help get me on the right track, can you point out the ones 
that might make sense?
Or to some working examples that test new <iframe> features?
For instance there might be a relatively simple test that shows how 
scripts in the iframe work or don't work with respect to no sandbox, 
sandbox, and sandbox='allow-scripts' and even if 'allow-same-origin' 
affects link rel asset loading.

In these two,
 nosandbox - anchor in iframe replaces top host document
 sandbox - anchor in iframe replaces iframe
I just wanted to test navigation with and without sandbox.

The wording may be bad, but for 'host' I mean the html containing the 
iframe and by 'iframe' I mean the content of the iframe.
Yes, iframe has been around a long time but seamless and samdbox are 
new, I think.

Seamless
 no seamless - browser default actrion makes iframe content
identifiable
 seamless - no browser action to make iframe content identifiable

Sandbox
 nosandbox - anchor in iframe replaces top host document
 sandbox - anchor in iframe replaces iframe

 no sandbox - external urls available (css, img, script, etc loaded)
 sandbox - no external urls available (css, img, script, etc not
loaded)
 sandbox='allow-same-origin' - absolute same origin urls allowed

 no sandbox - iframe script to change iframe works
 sandbox - iframe script to change iframe fails
 sandbox='allow-scripts' - iframe script to change iframe works

 no sandbox - iframe script to change host works
 sandbox - iframe script to change host fails
 sandbox='allow-scripts' - iframe script to change host fails

 no sandbox - form in iframe works
 sandbox - form in iframe fails
 sandbox='allow-forms' - form in iframe works

basic: no scripted window.open()
child iframes inherit parent iframe sandbox

Thank You and Best Regards,
Joe





----- Original Message ----- 
From: "Adam Barth" <w3c@adambarth.com>
To: "Joe D Williams" <joedwil@earthlink.net>
Cc: <public-html@w3.org>
Sent: Sunday, January 24, 2010 1:38 PM
Subject: Re: <iframe> operation


>I don't understand your question.  Almost all of your examples are
> incorrect.  Iframes have been an essential part of web development 
> for
> the better part of a decade.
>
> Adam
>
>
> On Sun, Jan 24, 2010 at 9:12 PM, Joe D Williams 
> <joedwil@earthlink.net> wrote:
>> I'm still looking for examples of <iframe> operation.
>> Following is a list and expected results.
>> Not complete list, or maybe even correct, and not all needed 
>> combinations,
>> and nothing for new @srcdoc.
>>
>> Seamless
>> no seamless - browser default actrion makes iframe content 
>> identifiable
>> seamless - no browser action to make iframe content identifiable
>>
>> Sandbox
>> nosandbox - anchor in iframe replaces document
>> sandbox - anchor in iframe replaces iframe
>>
>> no sandbox - external urls available (css, img, script, etc loaded)
>> sandbox - no external urls available (css, img, script, etc not 
>> loaded)
>> sandbox='allow-same-origin' - absolute same origin urls allowed
>>
>> no sandbox - iframe script to change iframe works
>> sandbox - iframe script to change iframe fails
>> sandbox='allow-scripts' - iframe script to change iframe works
>>
>> no sandbox - iframe script to change host works
>> sandbox - iframe script to change host fails
>> sandbox='allow-scripts' - iframe script to change host fails
>>
>> no sandbox - form in iframe works
>> sandbox - form in iframe fails
>> sandbox='allow-forms' - form in iframe works
>>
>> basic: no scripted window.open()
>> child iframes inherit parent iframe sandbox
>>
>> Thanks and Best Regards,
>> Joe
>>
>>
>>
>>
> 
Received on Sunday, 24 January 2010 22:10:23 UTC

This archive was generated by hypermail 2.3.1 : Monday, 29 September 2014 09:39:13 UTC