fenced-frame

fenced-frame copied to clipboard

Fenced content to render in a reproducible and deterministic way

4

It’s great to read through the detailed privacy considerations, thank you! In some applications of Fenced Frames, like Turtledove, it is important to ensure that the content renders in a...

piwanczak

The 'src' allowlist is a feature unique to iframes and fenced frames that, if set, only allows a given feature for the origin loaded in the src/config attribute. This is...

blu25

Spec "Referer" and "Origin" headers in reporting beacons.

5

This PR specs the following behavior: - Setting the "Origin" header to the origin of the frame that invoked `reportEvent()` for destination URL events. - Setting the "Origin" header to...

blu25

Spec network revocation mechanism to disable fetches

2

*** Preview | Diff

gtanzer

Keeping the core fenced frames functionality in the spec and moving the consumer API specific parts to the respective APIs that can then link into the core fenced frames spec....

shivanigithub

Essentially the equivalent of this CL: https://chromium-review.googlesource.com/c/chromium/src/+/4774259 Moving focus into a fenced frame should require user activation by default, unless explicitly specified otherwise.

blu25

A fenced frame should not be considered to have its network revoked until all its descendants have their network access revoked as well.

blu25

[Spec] Spec _unfencedTop

2

This issue blocks https://github.com/WICG/fenced-frame/issues/165

gtanzer

[Spec] Spec that disabling untrusted network disables top-level navigations (_unfencedTop and popups)

4

Do something similar to https://github.com/WICG/fenced-frame/pull/148 but for _unfencedTop and popups

gtanzer

[Spec] Specify way to exempt URLs from network revocation

1

This will require a change to the WPT web driver + an RFC opened for it.

blu25