- From: Dominick Ng <notifications@github.com>
- Date: Wed, 04 Jul 2018 22:35:50 -0700
- To: w3c/manifest <manifest@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3c/manifest/pull/701/review/134511870@github.com>
dominickng commented on this pull request. Looks great to me. A few suggestions. > <p> - Enforcing the navigation scope depends on [[!HTML]]'s navigate - algorithm. As such, the following algorithm monkey patches [[!HTML]]. - <a href="https://www.w3.org/Bugs/Public/show_bug.cgi?id=27653">Bug - 27653</a> has been filed to address this. + Unlike previous versions of this specification, user agents are no + longer required or allowed to block off-scope navigations, or open + them in a new <a>top-level browsing context</a>. This practice broke + a lot of sites that navigate to a URL on another origin (e.g., to Perhaps remove the "a lot of" qualifier? > <p> - Enforcing the navigation scope depends on [[!HTML]]'s navigate - algorithm. As such, the following algorithm monkey patches [[!HTML]]. - <a href="https://www.w3.org/Bugs/Public/show_bug.cgi?id=27653">Bug - 27653</a> has been filed to address this. + Unlike previous versions of this specification, user agents are no + longer required or allowed to block off-scope navigations, or open + them in a new <a>top-level browsing context</a>. This practice broke + a lot of sites that navigate to a URL on another origin (e.g., to "to a URL on another origin" -> "to an off-scope URL" (since scope can be narrower than an origin) > <p> - Enforcing the navigation scope depends on [[!HTML]]'s navigate - algorithm. As such, the following algorithm monkey patches [[!HTML]]. - <a href="https://www.w3.org/Bugs/Public/show_bug.cgi?id=27653">Bug - 27653</a> has been filed to address this. + Unlike previous versions of this specification, user agents are no + longer required or allowed to block off-scope navigations, or open + them in a new <a>top-level browsing context</a>. This practice broke + a lot of sites that navigate to a URL on another origin (e.g., to + perform third-party authentication), which would then navigate back to + the originating site. See Remove everything from comma to full stop? Bug has more details. > <p> - Please note that the <a>start URL</a> is not necessarily the value - of the <a data-link-for="WebAppManifest"><code>start_url</code></a> - member: the user or user agent could have changed it when the - application was added to home-screen or otherwise bookmarked. + The <a>start URL</a> is not necessarily the value of the + <a data-link-for="WebAppManifest"><code>start_url</code></a> member: + the user or user agent could have changed it when the application + was added to home-screen or otherwise bookmarked. "was added to...." -> "installed"? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/manifest/pull/701#pullrequestreview-134511870
Received on Thursday, 5 July 2018 05:36:16 UTC