- From: Marcos Caceres <notifications@github.com>
- Date: Mon, 30 Nov 2015 20:03:59 -0800
- To: w3c/manifest <manifest@noreply.github.com>
- Message-ID: <w3c/manifest/issues/412/160845595@github.com>
@slightlyoff wrote: > I have a few questions: > it seems like this is about an extension point for a project that doesn't really need anything from this group other than a blessing for a key name for the extension point. Am I misunderstanding something? Yes, this is one part. And easy to solve :) > the notion of non-origin security (the scope conversation) is much larger than something we can decide here. It's asking for a wormhole across the web's single safe composition mechanism and I think the bar for standardizing it will need to be much higher; at a minimum, we need to see why postMessage, <iframe>, and foreign fetch aren't sufficient for collaboration. Agree. Yes, this is about a larger discussion about sites that are composed of multiple origins. See the navigation problem I described. It could be hacked around using a fullscreen iframe, sure... but that has its own problems. Question is, when/where should we have that discussion? I've been delaying discussing it at Mozilla as we are mostly interested in supporting the basic stuff for now. --- Reply to this email directly or view it on GitHub: https://github.com/w3c/manifest/issues/412#issuecomment-160845595
Received on Tuesday, 1 December 2015 04:04:32 UTC