W3C home > Mailing lists > Public > whatwg@whatwg.org > January 2010

[whatwg] api for fullscreen() - security issues

From: Olli Pettay <Olli.Pettay@helsinki.fi>
Date: Sun, 31 Jan 2010 15:41:09 +0200
Message-ID: <4B658875.9020709@helsinki.fi>
On 1/31/10 6:38 AM, Tab Atkins Jr. wrote:
> This one seems kind of weird.  Does the spec currently distinguish
> significantly between a user-initiated click and a script-initiated
> one?
>

DOM 3 Events draft does have the concept of trusted events;
UA/user generated events are trusted, script generated aren't.


-Olli
Received on Sunday, 31 January 2010 05:41:09 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 22 January 2020 16:59:20 UTC