Re: [w3c/push-api] Define and use the p256dh/auth internal slots (PR #414) from Kagami Sascha Rosylight on 2025-11-25 (public-webapps-github@w3.org from November 2025)

From: Kagami Sascha Rosylight <notifications@github.com>
Date: Tue, 25 Nov 2025 08:12:14 -0800
To: w3c/push-api <push-api@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/push-api/pull/414/review/3505836828@github.com>

@saschanaz commented on this pull request.



> -          <ol>
-            <li>If the internal slot corresponds to an asymmetric key pair, let |b| be the encoded
-            value of the public key corresponding to the key name |i|, using the encoding defined
-            for the key name (see {{PushSubscription/getKey()}}).
-            </li>
-            <li>Otherwise, let |b| be the value as returned by {{PushSubscription/getKey}}.
-            </li>
-            <li>Let |s| be the URL-safe base64 encoding without padding [[RFC4648]] of |b| as a
-            {{USVString}}. The <a>user agent</a> MUST use a serialization method that does not
-            branch based on the value of |b|.
-            </li>
-            <li>Set |keys|[|i|] to |s|.
-            </li>
-          </ol>
+        <li>Set |keys|["p256dh"] to the URL-safe base64 encoding without padding [[RFC4648]] of
+        the value as returned by {{PushSubscription/getKey("p256dh")}}, as a {{USVString}}.

Hmm, I took a bit of look and I think it would be nice to fix this with key types. If we make the keys always serialized, then this step can simply retrieve that without an extra algorithm.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/w3c/push-api/pull/414#discussion_r2560594785
You are receiving this because you are subscribed to this thread.

Message ID: <w3c/push-api/pull/414/review/3505836828@github.com>

Received on Tuesday, 25 November 2025 16:12:18 UTC