- From: <bugzilla@jessica.w3.org>
- Date: Mon, 06 May 2013 21:30:01 +0000
- To: public-html-bugzilla@w3.org
https://www.w3.org/Bugs/Public/show_bug.cgi?id=21944
Bug ID: 21944
Summary: Security on measureText is unneccessary
Classification: Unclassified
Product: HTML WG
Version: unspecified
Hardware: PC
OS: Windows NT
Status: NEW
Severity: normal
Priority: P2
Component: CR HTML Canvas 2D Context
Assignee: jaymunro@microsoft.com
Reporter: cabanier@adobe.com
QA Contact: public-html-bugzilla@w3.org
CC: mike@w3.org
Depends on: 21943
+++ This bug was initially created as a clone of Bug #21943 +++
The canvas 2d spec currently states that a font has to be local in order for
measureText to work:
If doing these measurements requires using a font that has an origin that is
not the same as that of the Document object that owns the canvas element (even
if "using a font" means just checking if that font has a particular glyph in it
before falling back to another font), then the method must throw a
SecurityError exception.
http://www.whatwg.org/specs/web-apps/current-work/multipage/the-canvas-element.html#dom-context-2d-measuretext
http://www.w3.org/TR/2dcontext/#dom-context-2d-measuretext
After a small discussion on the mailing list, we agreed that the spec should
not have this text. Instead it should be silent and rely on the general font
loading algorithm that CSS specifies.
--
You are receiving this mail because:
You are the QA Contact for the bug.
Received on Monday, 6 May 2013 21:30:02 UTC