- From: Lukasz Olejnik <notifications@github.com>
- Date: Fri, 18 Oct 2019 00:56:38 -0700
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3ctag/design-reviews/issues/413/543580676@github.com>
> Each of the new display properties chosen for this API makes a non-replaceable contribution. Removal or constraining of any property may degrade the user experience. Some properties offer more value than others, and some are more relevant to the proposed use cases than others. Care should be taken to choose those properties offering the most value to the most important use cases. It has been suggested that user agents themselves could provide a UI for selecting where content is presented, but this is cumbersome for users and prohibitively limiting for web applications. This also offers no meaningful value over the existing cumbersome manual placement of windows by users. Can't we simplify to "for each display we need same information as is currently offered by existing screen object"? We do not discuss the contents of the screen object, but the inflation of (many) screen objects. > 2.3 This API does not expose such information. Any exposed information may identify the machine, but not its user. Information allowing to identify the user's machine is more or less identifying the user, so you're saying the opposite. Maybe at least remove the 2nd sentence? > 2.6 This API proposes exposing some additional properties for each of the displays connected to the device; see Section 2.1 for a complete list. The complete list seems to be X*12-15 static objects (some of them dynamic; with X the number of screens). > 2.7 Does this specification allow an origin access to sensors on a user’s device? No. It does on the other hand inform if the display has an accelerometer, which would make it simpler to direct a malicious script to an appropriate window. > 2.8 "The following display properties are currently exposed ..." So we can today access all the device screens already? Wouldn't it be more useful to enumerate the new identifiers to be exposed, which is the above 12-15 numbers per each screen, which is not currently easily available? > To mitigate this issue, user permission is required to access the display Do I see it correctly that this API will be gated behind permissions? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/413#issuecomment-543580676
Received on Friday, 18 October 2019 07:56:41 UTC