client-hints-infrastructure
client-hints-infrastructure copied to clipboard
WICG
Specification for the Client Hints infrastructure - privacy preserving proactive content negotiation
These new headers increase the size of an HTTP request and coupled with attacker-controlled headers or header values could be used to carry out certain cookie-size sniffing attacks. Privacy measures...
Hello! I have a website that must work without JavaScript, and I am looking into server-side solutions to detect if cookies are enabled. A solution may be to set a...
I just noticed that a worker's client hint is set at initialization, but workers can live beyond multiple top-level navigations. We should decide if/when/where a worker's client hint set is...
Right now, in order to send third parties client hints, you must: 1. Allow the sending of specific hints to specific origins (via Feature-Policy) (by default, only the first party...
It would be great to have input modality (mouse, touch, etc) be passed on each request by Chrome as a User Agent Client Hint (UACH). It would help in determining...
Could be helpful for a number of reasons, including deduplication for analytics and better handling of still-missing headers. Could call it `Critical-CH-Restart` or something, I'm thinking along the lines of...
Fortunately there is a lot we can already do to improve the accessibility of websites. Client hints may even provide another way to inform us of what a user needs....
The complexity introduced increases the learning curve for "do-it-yourself" or "individual" developers' when improving performance or optimising their websites. This does not seem to align with Ethical Web Principle "[The...
