W3C home > Mailing lists > Public > public-html-bugzilla@w3.org > August 2011

[Bug 13348] I was wondering if it would be possible to extend the iframe sandbox attribute to provide additional functionality. We've been developing a HTML5 digital signage solution where the playback application is a HTML5 web page. When the solution is displaying

From: <bugzilla@jessica.w3.org>
Date: Tue, 16 Aug 2011 07:19:12 +0000
To: public-html-bugzilla@w3.org
Message-Id: <E1QtDvc-0006A9-RB@jessica.w3.org>

Stephen von Takach <steve@advancedcontrol.com.au> changed:

           What    |Removed                     |Added
           Keywords|                            |Disagree, needsReview
             Status|RESOLVED                    |REOPENED
         Resolution|NEEDSINFO                   |

--- Comment #5 from Stephen von Takach <steve@advancedcontrol.com.au> 2011-08-16 07:19:11 UTC ---
What additional information do you need?

>From my perspective the iframe sandbox doesn't go far enough if browsers are
not ignoring X-Frame-Options on sandboxed content.
Browser developers should be confident that click-jacking is preventable when
using a sandbox under certain conditions.

I believe, in this context, there is enough of a case for extending the
functionality of the sandbox attribute.

Configure bugmail: http://www.w3.org/Bugs/Public/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA contact for the bug.
Received on Tuesday, 16 August 2011 07:19:13 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 20:02:01 UTC