Re: [manifest] Feat (l18n): define expected means of doing l18n (closes #323) (#434) from Mounir Lamouri on 2016-03-22 (public-webapps-github@w3.org from March 2016)

From: Mounir Lamouri <notifications@github.com>
Date: Tue, 22 Mar 2016 03:23:58 -0700
To: w3c/manifest <manifest@noreply.github.com>
Message-ID: <w3c/manifest/pull/434/r56963360@github.com>

> +          Using content-negotiation, or geo-ip, etc. on the server:
> +        </dt>
> +        <dd>
> +          The server that hosts the web application could attempt to
> +          predetermine the user's language by using a geo-ip look-up or by
> +          using content negotiation (e.g., using [[RFC7540]]'s
> +          "<code>Accept-Language</code>" header, or even a custom HTTP header).
> +        </dd>
> +      </dl>
> +      <p>
> +        Given the options above, developers need to be mindful of the
> +        end-user's privacy with respect to their preferred language. Sending
> +        the user's preferred language in the clear is generally not ok, as it
> +        reveals personal information about an end-user. As such, developers are
> +        encouraged to use [[TLS]] to reduce the chances of pervasive monitoring
> +        of their Web applications [[RFC7258]].

UA send the Accept-Languages header for HTTP requests. That point sounds fairly moot.

---
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/manifest/pull/434/files/a8e3a8c6daf13bed5b3fc73bbcbde305880e6a53#r56963360

Received on Tuesday, 22 March 2016 10:24:33 UTC