- From: Stephen McGruer <smcgruer@google.com>
- Date: Thu, 12 Aug 2021 10:53:51 -0400
- To: Ian Jacobs <ij@w3.org>
- Cc: Web Payments Working Group <public-payments-wg@w3.org>
- Message-ID: <CADY3MafREy_D5Bd5UVYbakWfiP_rRjq-zb2iQJoeDQU7hw2WDQ@mail.gmail.com>
> * Question: can SPC authentication be called from a cross-origin iframe with proper permissions? (Also ok to answer this one by email. I hope the answer is simply “yes" :) Yes. The permissions are allow="payment", I believe, and a user activation (or delegated capability) will be needed in the mid-term future (because it uses PaymentRequest.show()). https://rsolomakhin.github.io/pr/spc-iframe/ is a demo page that does this, I think, though note it is technically testing a more complicated case than just a call in a cross-origin iframe. On Thu, 12 Aug 2021 at 10:49, Ian Jacobs <ij@w3.org> wrote: > Dear SPC Task Force Participants, > > Here is the agenda for 16 August: > > * Issue 98: UX behavior when there are no matching credentials > https://github.com/w3c/secure-payment-confirmation/issues/98 > > * Question: can SPC authentication be called from a cross-origin iframe > with proper permissions? > (Also ok to answer this one by email. I hope the answer is simply “yes" > :) > > * Reminder to reply to CfC for FPWD of SPC > > https://lists.w3.org/Archives/Public/public-payments-wg/2021Aug/0005.html > > * Any updates from Chrome team on what’s coming up next in the > implementation? > > * Next meeting: 23 August > > Meeting information: http://www.w3.org/2021/04/spc-tf.ics > IRC: irc.w3.org #wpwg-spc > > Thank you, > > Ian > > -- > Ian Jacobs <ij@w3.org> > https://www.w3.org/People/Jacobs/ > Tel: +1 718 260 9447 <+1%20718-260-9447> > > > > > > -- smcgruer • he / him
Received on Thursday, 12 August 2021 14:54:18 UTC