- From: Web Security Context Working Group Issue Tracker <sysbot+tracker@w3.org>
- Date: Wed, 2 Jan 2008 19:25:27 +0000 (GMT)
- To: public-wsc-wg@w3.org
ISSUE-156: Tighten and abstract seleting the text string [wsc-xit] http://www.w3.org/2006/WSC/track/issues/ Raised by: Mary Ellen Zurko On product: wsc-xit 7.5 This section can benefit from some tightening up of the text and abstraction of the concepts. Here's my proposal: The text entry tool supports user entry of a new text string and selection of a previously entered text string. The editor MUST provide an indication of which of the two actions is being taken. A user action to select a text string submitted to some other site MAY be offered. The user action to select a text string previously submitted to the current site MUST involve fewer manual and cognitive steps than the interaction to select a text string previously submitted to some other site. For example, text strings previously submitted to the current site could be displayed in a main menu and other text strings displayed in a sub menu. Representation of such strings MUST differentiate between the two types (those submitted to the current site, and all others). Selection and submission mechanisms MUST require explicit action by the user. Transmission of a text string in a particular request represents user consent for use of that text string for the purpose of that request. The safe editor bar MUST be the only form filling feature of the user agent. A competing form filling feature would undermine the security features of the interaction created by the editor bar.
Received on Wednesday, 2 January 2008 19:25:31 UTC