standards-positions
standards-positions copied to clipboard
WebKit
User Preference Media Features Client Hints Headers
Request for position on an emerging web specification
- WebKittens who can provide input: ?
Information about the spec
- Spec Title: User Preference Media Features Client Hints Headers
- Spec URL: https://wicg.github.io/user-preference-media-features-headers/
- GitHub repository: https://github.com/wicg/user-preference-media-features-headers/
Design reviews and vendor positions
- TAG Design Review: https://github.com/w3ctag/design-reviews/issues/632
- Mozilla standards-positions issue: https://github.com/mozilla/standards-positions/issues/526
Bugs tracking this feature
- WebKit Bugzilla: https://bugs.webkit.org/show_bug.cgi?id=242102
- Radar:
<rdar://problem/96504765> - Mozilla Bugzilla: https://bugzilla.mozilla.org/show_bug.cgi?id=1777192
- Chromium: ~~https://crbug.com/1207897~~ (Verified [Closed])
Anything else we need to know
This has been implemented by Google Search.
Off-hand, this essentially just allows sites to avoid saving cookies with data from Window.matchMedia, right? As such, from a fingerprinting point-of-view (and with CHs subject to the same story policies) this doesn't provide any additional surface?
(Note I'm not considering Client Hint Reliability here, despite that being informatively (I think?) referenced in this spec; that would be another standard to have a position on!)
This potentially turns active fingerprinting surface into passive fingerprinting surface, which would be concerning, given the sensitivity of some of these properties.
With Sec-CH-Prefers-Color-Scheme marked as critical client hint, it can make a huge difference in user experience since it would avoid a flash of white (a common complaint), so the server can tailor the response also for the very first time before a user visits a site:
HTTP/1.1 200 OK
Content-Type: text/html
Accept-CH: Sec-CH-Prefers-Color-Scheme, Sec-CH-Prefers-Contrast
Vary: Sec-CH-Prefers-Color-Scheme
Critical-CH: Sec-CH-Prefers-Color-Scheme
FWIW, client hints in general are active fingerprinting surface, not passive, because the server has to actively turn them on by sending the Accept-CH header. There are a few rare exceptions in the UA CH spec, but this one isn't an exception.
With Sec-CH-Prefers-Color-Scheme marked as critical client hint, it can make a huge difference in user experience since it would avoid a flash of white (a common complaint), so the server can tailor the response also for the very first time before a user visits a site
Since the browser already knows the user prefers a dark color scheme, fixing this nit could be an implementation detail, couldn't it? I also believe there are ways the site author could already address the white FOUC.
We need to come to a position on https://github.com/WebKit/standards-positions/issues/20 before we can come to positions on proposals that use the Client Hints infrastructure.
As a heads up I'm currently prototyping adding a new user preference client hint Sec-CH-Prefers-Reduced-Transparency this as you can probably guess will reflect the prefers-reduced-transparency media feature (See #145 ).
As a heads up I'm currently prototyping adding a new user preference client hint
Sec-CH-Prefers-Reduced-Transparencythis as you can probably guess will reflect theprefers-reduced-motionmedia feature (See #145 ).
(I suppose you mean "will reflect prefers-reduced-transparency" based on #145.)
FYI, I have an open PR about adding Privacy Considerations. See https://github.com/WICG/user-preference-media-features-headers/pull/11 for details.