- From: Joe D Williams <joedwil@earthlink.net>
- Date: Sun, 24 Jan 2010 14:09:41 -0800
- To: "Adam Barth" <w3c@adambarth.com>
- Cc: <public-html@w3.org>
Hi Adam, Just to help get me on the right track, can you point out the ones that might make sense? Or to some working examples that test new <iframe> features? For instance there might be a relatively simple test that shows how scripts in the iframe work or don't work with respect to no sandbox, sandbox, and sandbox='allow-scripts' and even if 'allow-same-origin' affects link rel asset loading. In these two, nosandbox - anchor in iframe replaces top host document sandbox - anchor in iframe replaces iframe I just wanted to test navigation with and without sandbox. The wording may be bad, but for 'host' I mean the html containing the iframe and by 'iframe' I mean the content of the iframe. Yes, iframe has been around a long time but seamless and samdbox are new, I think. Seamless no seamless - browser default actrion makes iframe content identifiable seamless - no browser action to make iframe content identifiable Sandbox nosandbox - anchor in iframe replaces top host document sandbox - anchor in iframe replaces iframe no sandbox - external urls available (css, img, script, etc loaded) sandbox - no external urls available (css, img, script, etc not loaded) sandbox='allow-same-origin' - absolute same origin urls allowed no sandbox - iframe script to change iframe works sandbox - iframe script to change iframe fails sandbox='allow-scripts' - iframe script to change iframe works no sandbox - iframe script to change host works sandbox - iframe script to change host fails sandbox='allow-scripts' - iframe script to change host fails no sandbox - form in iframe works sandbox - form in iframe fails sandbox='allow-forms' - form in iframe works basic: no scripted window.open() child iframes inherit parent iframe sandbox Thank You and Best Regards, Joe ----- Original Message ----- From: "Adam Barth" <w3c@adambarth.com> To: "Joe D Williams" <joedwil@earthlink.net> Cc: <public-html@w3.org> Sent: Sunday, January 24, 2010 1:38 PM Subject: Re: <iframe> operation >I don't understand your question. Almost all of your examples are > incorrect. Iframes have been an essential part of web development > for > the better part of a decade. > > Adam > > > On Sun, Jan 24, 2010 at 9:12 PM, Joe D Williams > <joedwil@earthlink.net> wrote: >> I'm still looking for examples of <iframe> operation. >> Following is a list and expected results. >> Not complete list, or maybe even correct, and not all needed >> combinations, >> and nothing for new @srcdoc. >> >> Seamless >> no seamless - browser default actrion makes iframe content >> identifiable >> seamless - no browser action to make iframe content identifiable >> >> Sandbox >> nosandbox - anchor in iframe replaces document >> sandbox - anchor in iframe replaces iframe >> >> no sandbox - external urls available (css, img, script, etc loaded) >> sandbox - no external urls available (css, img, script, etc not >> loaded) >> sandbox='allow-same-origin' - absolute same origin urls allowed >> >> no sandbox - iframe script to change iframe works >> sandbox - iframe script to change iframe fails >> sandbox='allow-scripts' - iframe script to change iframe works >> >> no sandbox - iframe script to change host works >> sandbox - iframe script to change host fails >> sandbox='allow-scripts' - iframe script to change host fails >> >> no sandbox - form in iframe works >> sandbox - form in iframe fails >> sandbox='allow-forms' - form in iframe works >> >> basic: no scripted window.open() >> child iframes inherit parent iframe sandbox >> >> Thanks and Best Regards, >> Joe >> >> >> >> >
Received on Sunday, 24 January 2010 22:10:23 UTC