W3C home > Mailing lists > Public > whatwg@whatwg.org > July 2008

[whatwg] Application deployment

From: Adam Barth <whatwg@adambarth.com>
Date: Mon, 28 Jul 2008 00:55:15 -0700
Message-ID: <7789133a0807280055r59244804n2af7b7ed30f255bb@mail.gmail.com>
On Sun, Jul 27, 2008 at 11:55 PM, Kristof Zelechovski
<giecrilj at stegny.2a.pl> wrote:
> <jar:http://www.example.com/site.jar!/path/inside/foo.html>?
> What kind of a syntax is that??  JAR is not a protocol, it is a content
> type.

In Firefox, jar is a protocol that means retrieve the enclosed URL,
unzip the contents, and look for the path after the "!".  I suspect
the reason the Firefox developers chose ! to separate the URL to the
JAR from the path within the JAR is that ! is not a valid URL
character.

> It should rather be
> <http://www.example.com/site.jar#path/inside/foo.html>.  It reads: retrieve
> the resource "site.jar" using the HTTP protocol and look into it for the
> fragment "foo.html".  I do not know how to read the original notation and I
> think it should be withdrawn.

Withdrawn from what?  This feature has already shipped in a number of
versions of Firefox.  The main value of using the packaged archive is
that the content author can sign the archive.  For example, this is
the mechanism used for Firefox extensions.

My guess is this mechanism will not be included in HTML 5 because some
of the other browser vendors have expressed their distaste for nested
URL schemes.


> Chris
> -----Original Message-----
> From: whatwg-bounces at lists.whatwg.org
> [mailto:whatwg-bounces at lists.whatwg.org] On Behalf Of Adam Barth
> Sent: Sunday, July 27, 2008 11:33 PM
> To: Philipp Serafin
> Cc: whatwg at whatwg.org; Russell Leggett
> Subject: Re: [whatwg] Application deployment
>
> Firefox already implements this today with the jar protocol.  Put your
> content into a zip archive and access it using this kind of URL:
>
> jar:http://www.example.com/site.jar!/path/inside/foo.html
>
> I'm not sure many sites use this feature, but it has been a source of
> several recent security issues.
>
> Adam
>
>
>
>
Received on Monday, 28 July 2008 00:55:15 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 16:59:03 UTC