- From: Xidorn Quan via GitHub <sysbot+gh@w3.org>
- Date: Tue, 14 Jan 2020 21:54:45 +0000
- To: public-css-archive@w3.org
Yes, that sounds like a cross-origin information leak, but I can imagine that there are use cases for that. For example, certain site may want to have an iframe taking the whole viewport and interact with it somehow. I'm thinking that maybe the parent document should probably be able to control the `safe-area-insets-*` of its child to provide more flexibility and possibility, e.g. website can embed third-party media player with some inset controls provided from the parent, or they can embed an iPhone simulator with content inside an iframe. Since environment variables are currently only exposed via CSS, it would probably be a good idea to also do such control via CSS, for example, maybe we can provide a set of properties for iframe just following the same names as the environment variables, and the value would be applied into the iframe for them. WDYT? -- GitHub Notification of comment by upsuper Please view or discuss this issue at https://github.com/w3c/csswg-drafts/issues/4670#issuecomment-574392162 using your GitHub account
Received on Tuesday, 14 January 2020 21:54:46 UTC