- From: hober <notifications@github.com>
- Date: Tue, 26 May 2020 08:29:08 -0700
- To: w3ctag/design-reviews <design-reviews@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
Received on Tuesday, 26 May 2020 15:29:20 UTC
Hi, @kenchris and I looked at this in a TAG breakout today. This is a really complex feature, so we will need to keep digging, but we wanted to share our initial thoughts with you now. Issue [WICG/webpackage#560 ](https://github.com/WICG/webpackage/pull/560) is interesting. With AMP you see these fake address bars in content, which attempt to trick users into believing the URL to the AMP document is actually something else. Sometimes they even auto-scroll the page so that the browsers's address bar gets hidden. It's pretty gross. So it makes a lot of sense that you really want to avoid that same problem here with web packages. But it seems to us that you can't escape it: directly displaying the `package` URL is meaningless to users, displaying the publisher hostname in the address bar is deceptive the same way the fake AMP address bars are (it *puts the deception directly into the browser's trusted UI*), and displaying the distributor hostname in the address bar encourages content to do the same icky stuff AMP content does today. This is maybe just the inherent complexity of having `publisher != distributor`. -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3ctag/design-reviews/issues/509#issuecomment-634098027
Received on Tuesday, 26 May 2020 15:29:20 UTC