On 6 Jul 2010, at 15:24, Marques Johansson wrote:
A 200 response or partial 206 responses that returns less than the full
requested range is not handled by browsers in a consistent or usable way (for
this purpose). Only Chrome will continue to fetch where the previous short
206 response
I believe we can allow arbitrary content to go fullscreen, along the lines of
what Robert O'Callahan has proposed on this list, if we impose sufficient
restrictions to mitigate the above risks. In my opinion, the following
measures would likely be sufficient:
A) Have a distinctive
A agree disallowing chars in attributes greatly simplifies parsing. Not
only with regular expressions, but any parsing.
If are allowed, it means that in order to found the end of the element
you do have to read all attributes before. This is very costy.
You just need two extra states in the
On 24 Jun 2010, at 14:11, Benjamin M. Schwartz wrote:
Why would it simplify parsing?
It greatly simplifies parsing when you just want to extract entire tags,
without immediately parsing the attributes.
If you mean parsing with regular expressions, then I think that's a bad
practice and
On Mon, 14 Jun 2010 20:38:07 +0100, Carlos Andrés Solís
csol...@gmail.com wrote:
Hello! I've been noticing a problem in many HTML5 test apps, very
especially games. When the directional arrow buttons are pressed, the
screen scrolls.
This is a problem that, as far as I know, Flash had
On Mon, 14 Jun 2010 08:44:09 +0100, Jonas Sicking jo...@sicking.cc wrote:
Agreed on both accounts. Both these suggestions add a lot of
complexity to the platform and we should avoid it if at all possible.
To the extent that if there is lots of broken sites out there because
they happen to use
On 1 Jun 2010, at 11:12, Erik Möller wrote:
The use case I'd like to address in this post is Real-time client/server
games.
The majority of the on-line games of today use a client/server model over UDP
and we should try to give game developers the tools they require to create
browser
On 24 May 2010, at 22:09, David Levin wrote:
that even if it was implemented everywhere, this solution involves readback
from the GPU which, as Chris mentioned, is generally evil and should be
avoided at all costs.
This I'm not qualified to comment on, though. To the best of my
On 4 May 2010, at 09:07, timeless wrote:
On Tue, May 4, 2010 at 10:08 AM, Eitan Adler eitanadlerl...@gmail.com wrote:
3) Currently autofill for usernames looks for something like
id=username or name=username. However on certain websites this
fails.
Why would a site which doesn't cooperate
On Thu, 25 Feb 2010 16:00:37 -, Timothy D. Morgan
tmor...@vsecurity.com wrote:
As a follow up to my paper advocating HTTP authentication over
cookies [1], I've built a simple sample application which demonstrates
how a combination of XMLHttpRequest and response code tricks can be
used to
On Fri, 05 Feb 2010 20:47:35 -, David Gerard dger...@gmail.com wrote:
http://www.atoker.com/blog/2010/02/04/html5-theora-video-codec-for-silverlight/
http://arstechnica.com/open-source/news/2010/02/nuanti-brings-html5-and-ogg-theora-video-to-silverlight.ars
The 40% is from the blog post at
On 4 Feb 2010, at 17:44, Michal Zalewski wrote:
If there's no HTML, there's no need for a sandbox, so the simplest
solution is just to escape the s and s.
Which people fail at, big time. There are 50,000+ entries on
xssed.com, many of them against big sites presumably developed by
skilled
On 5 Feb 2010, at 14:19, Lachlan Hunt wrote:
where $token is the random part. This avoids oddity of attributes in
closing tag, and is compatible with XML. In XML you could also use:
$token:sandbox xmlns:$token=…/$token:sandbox
No, you couldn't use a namespace like that, because then the
offering option to print them myself.
--
regards, Kornel Lesinski
that extracts all headers from
the document? Without hgroup it's simple. With hgroup I'm not sure if
I could manage to write correct query.
--
regards, Kornel Lesinski
and validation.
--
regards, Kornel Lesinski
-253195).
--
regards, Kornel Lesinski
, Kornel Lesinski
graceful degradation/progressive enhancement instead (in both cases).
--
regards, Kornel Lesinski
to styling of hx, and can be given
appropriate size with h1 + subheader CSS selector.
--
regards, Kornel Lesinski
place to discuss it.
--
regards, Kornel Lesinski
previous state of the page, just like in case of GET.
Do you think that solution suggested by RFC 2616 13.13 is not appropriate?
Is Opera's solution of this problem not good enough?
--
regards, Kornel Lesinski
:
* If it's not safe to resubmit, use status 303. I know it's not very
convenient, but can be implemented reasonably well and works with existing
browsers.
* If it's safe to resubmit, use PUT method (allowed in HTML 5), which is
idempotent by definition.
--
regards, Kornel Lesinski
://www.w3.org/Protocols/rfc2616/rfc2616-sec13.html#sec13.13
This problem can be elegantly solved within existing standards: Opera simply
goes back in history without resubmitting forms, and resubmits only when user
clicks standard Reload button (or F5, etc.)
--
regards, Kornel Lesinski
moving website to a CMS or writing XSLT :)
Despite that I'm not excited about Ian's proposal. In these scenarios I often
want content of the feed to be different than content of the page, e.g. feed
says I've added article about Foo., but page has Newest articles: Foo, Bar,
Baz.
--
regards, Kornel
feeds.
--
regards, Kornel Lesinski
, they could as well look for form with a
single password field.
--
regards, Kornel Lesinski
a {appearance: button} should do that.
In current browsers:
form method=get action=url style=display:inlinebutton/form
is very close to a link.
--
regards, Kornel Lesinski
controlled by browsers/users. To
disable autosave authors could use autocomplete=off.
--
regards, Kornel Lesinski
On Wed, 28 May 2008 13:07:50 +0100, Ian Hickson [EMAIL PROTECTED] wrote:
I'm afraid that this could cause trouble (every visitor downloading icon
that's 20–300 times larger than typical favicon). Why not use
rel=application-icon or rel=appicon?
I don't understand the question.
link rel=icon
On Thu, 08 May 2008 03:17:38 +0100, Ian Hickson [EMAIL PROTECTED] wrote:
I've added a sizes attribute to link for the icon keyword.
The spec now contains:
If multiple icons are provided, the user agent must select the most
appropriate icon according to the media and sizes attributes. If
On Fri, 09 May 2008 00:50:20 +0100, Samuel Santos [EMAIL PROTECTED]
wrote:
In order to validate a page as valid HTML/XHTML you need to escape inline
script when using characters like .
You can use:
/*![CDATA[*/ /*]]*/
It's compatible with both HTML and XHTML.
--
regards, Kornel Lesiński
I don't think it's that important to specify exact icon sizes. Authors
won't bother to accurately provide such detailed information, and
applications don't need it anyway.
iPhone shouldn't be a concern here. It isn't limited to 59x60
icons—Apple's own website uses 129x129
On Mon, 05 May 2008 23:36:51 +0100, Aaron Boodman [EMAIL PROTECTED] wrote:
There isn't much bandwidth to be saved. These icons are going to be
downloaded only once. 128x128 PNG icons take only 20-30kb.
Without hints as to which file contains which size, the user agent
must download up to four
On Tue, 12 Feb 2008 21:54:25 -, Philip Taylor [EMAIL PROTECTED] wrote:
It's quite a different situation when the Referer is used as a security
measure in deciding to trust a user's request, where false negatives can
have significant consequences (like editing data via cross-site request
On Sun, 10 Feb 2008 23:25:51 -, Ian Hickson [EMAIL PROTECTED] wrote:
That would mean that passing ImageData around between two canvas
elements doesn't always work as expected. I think that's highly
undesirable. Is there any implementation where we know this will the
case?
Not today, but
On Sat, 05 Jan 2008 06:51:29 -, Henry Mason [EMAIL PROTECTED] wrote:
- Unnecessary dependency on DOM Events
This feature is inherently event-based. I think it does make sense to
re-use existing framework for event handling.
However, I haven't found use-case for remote triggering of
On Thu, 16 Aug 2007 19:49:27 +0100, Julien TOUCHE
[EMAIL PROTECTED] wrote:
Unfortunately this will not secure browsing session, because once user
is authenticated, server will have to use cookies which could be stolen
and used to impersonate the user.
cookies are another part of the problem
On Wed, 15 Aug 2007 16:08:51 +0100, Julien TOUCHE
[EMAIL PROTECTED] wrote:
input type=password hash=sha256 name=mypass /
so the browser transmits only the corresponding hash of the
given value.
Unfortunately this will not secure browsing session, because once user is
On Sat, 28 Jul 2007 19:02:46 +0100, Sander [EMAIL PROTECTED] wrote:
I don't see how that is good usability. Quite the contrary, because this
approach means things work different on each website. That's confusing;
incosistency makes things harder to use. A print method that works the
same
On Fri, 15 Jun 2007 02:05:05 +0100, Ian Hickson [EMAIL PROTECTED] wrote:
I've defined the parsing and conformance requirements in a way that
matches IE. As a side-effect, this has made things like naiumlve
actually conforming. I don't know if we want this.
Rather not. This would break
On Mon, 23 Apr 2007 23:19:49 +0100, Jonas Sicking [EMAIL PROTECTED] wrote:
This is an idea I have had floating around in my head for a while and
a recent couple of threads reminded me I really need to post it here.
Basic idea:
The idea is basically an element like iframe but that renders the
On Sun, 22 Apr 2007 01:26:55 +0100, Jon Barnett [EMAIL PROTECTED]
wrote:
By entirely omitted alt, do you still only mean WYSIWYG editors? If
not, I agree. The distinction would be as follows:
(1) img src=obvious.jpg alt=obvious - This image represents text,
particularly the word obvious.
On Sun, 22 Apr 2007 18:58:13 +0100, Kristof Zelechovski
[EMAIL PROTECTED] wrote:
For (2): alt=(Your browser does not display graphic images).
What's the point? Users who rely on alt attribute know that already, and
unless exactly that phrase is required by the specification (= bad for
On Thu, 19 Apr 2007 21:07:09 +0100, timeless [EMAIL PROTECTED] wrote:
As such, encouraging people to include alt tags means the difference
between me knowing that there's an image I care to look at and not.
If e-mail client automatically inserted [image was here] in the text part
of e-mail,
On Sat, 14 Apr 2007 02:10:07 +0100, Simon Pieters [EMAIL PROTECTED]
wrote:
We currently don't have interop with IE and other browsers with regards
to what to send to the server as the value of button.
IE always sends .innerText as value.
IIRC it's innerHTML, but I can't verify it at the
On Wed, 11 Apr 2007 15:13:09 +0100, Gervase Markham [EMAIL PROTECTED]
wrote:
Looking through the spec again, there is nothing about backslashes in
URI's path being treated as a forward slash, behaviour needed for
compatibility for quite a few websites.
I would be rather surprised if that
On Wed, 11 Apr 2007 14:02:39 +0100, Geoffrey Sneddon
[EMAIL PROTECTED] wrote:
Looking through the spec again, there is nothing about backslashes in
URI's path being treated as a forward slash, behaviour needed for
compatibility for quite a few websites.
I think it can be added.
RFC 1738
On Sun, 08 Apr 2007 19:17:55 +0100, Georges MARZIN
[EMAIL PROTECTED] wrote:
a href=inc/foo.frg target=#main_area
Click here to dynamicaly load a text/html piece of code into
the main_area identified dom node
/a
!-- somewhere in the same document --
div
On Sun, 08 Apr 2007 22:22:20 +0100, Georges MARZIN
[EMAIL PROTECTED] wrote:
IMHO it isn't much better than:
a href=inc/foo.frg target=main_area
iframe name=main_area/iframe
It's still as evil as frames - subpages can't be used as standalone
documents (thus bookmarked, returned by search
On Sun, 25 Mar 2007 20:28:38 -, Elliotte Harold
[EMAIL PROTECTED] wrote:
there can always be browser defaults that take over, but by allowing
authors the ability to override the browsers controls
will allow for the flexibility of
a) allowing for disabled controls (perhaps disabling
On Fri, 23 Mar 2007 10:24:30 -, Silvia Pfeiffer
[EMAIL PROTECTED] wrote:
Let's say there's http://example.com/example.html page which contains
embedded video:
...video src=video.ogg...
I'd like to be able to construct URL like:
http://example.com/[EMAIL PROTECTED]:35
that would cause UA
On Fri, 23 Mar 2007 20:57:24 -, Silvia Pfeiffer
[EMAIL PROTECTED] wrote:
video id=myvideo_3 src=video.ogg?t=0:12:35/0:20:40
to provide the video segment between offset 12:35 and 20:40
video id=myvideo_4 src=video.ogg?id=section4
to provide the video from named offset section4
These
On Thu, 22 Mar 2007 20:53:48 -, Silvia Pfeiffer
[EMAIL PROTECTED] wrote:
About 8 years ago, we had the idea of using fragment offsets to start
playing from offsets of media files. However, in discussions with the
URI standardisation team at W3C it turned out that fragment offsets
are only
On Wed, 21 Mar 2007 18:31:29 -, Nicholas Shanks
[EMAIL PROTECTED] wrote:
Well besides the fact that fragment ids cannot start with a number
nor contain a colon
I've checked syntax for fragment identifiers in URIs (RFC 2396) and
haven't found such limitation. If such fragments cannot
On Wed, 21 Mar 2007 20:19:24 -, Nicholas Shanks
[EMAIL PROTECTED] wrote:
On the other hand it depends on authors providing metadata. Most
likely very few will do that, and even then provided chapters may
not cover all interesting fragments in the video/audio.
That situation isn't any
elegance and simplicity of video element.
--
regards, Kornel Lesinski
On Sun, 18 Mar 2007 18:52:35 -, Alexey Feldgendler
[EMAIL PROTECTED] wrote:
How about controls overlaid on top of video, which are visible only when
mouse hovers it? Something like fullscreen controls in QuickTime Pro or
iTunes 7.
To ensure that video is always usable:
* UI would be
On Sun, 18 Mar 2007 21:07:20 -, Mihai Sucan [EMAIL PROTECTED]
wrote:
If video elements would have native UIs, bloggers would be more
attracted of it, and developers of video sites as well. In the above
case, you'd only have:
video src=http://www.youtube.com/v/id;
I doubt YouTube
On Fri, 16 Mar 2007 23:49:04 -, Bjoern Hoehrmann [EMAIL PROTECTED]
wrote:
++-+-+---+
| SMIL | SVG | IE | WHATWG |
I think it would be useful if fragment identifiers in URL could specify
starting position of video. This would let anyone to bookmark position in
the video without having to worry about (lack of) site-specific navigation
and UI for seeking.
[EMAIL PROTECTED]:mm:ss
(I'm not sure how
On Tue, 13 Mar 2007 20:29:09 -, Asbjørn Ulsberg
[EMAIL PROTECTED] wrote:
Many pages use tables where only the first column are header cells,
e.g.:
table
trthFoo tdBar
trthFoo tdBar
trthFoo tdBar
/table
With the current algorithm for assigning header cells to
On Wed, 07 Mar 2007 17:46:43 -, Elliotte Harold
[EMAIL PROTECTED] wrote:
How so?
Well, your article advocates sniffing specific user agents where the
one written by Mark Pilgrim uses the Accept: header which was actually
designed for this... Google, for one, is known for not
On Wed, 07 Mar 2007 23:52:08 -, Alexey Feldgendler
[EMAIL PROTECTED] wrote:
Even your regular expressions for User-Agent aren't doing exactly what
you intended, because mod_rewrite does not anchor patterns.
While I totally agree that browser sniffing isn't a way to go, I must
say
On Tue, 06 Mar 2007 10:11:01 -, Gervase Markham [EMAIL PROTECTED]
wrote:
A good point. I know nothing about extending IE; would it be possible to
have an IE addon which implemented support for a video tag, or would
it need to be a plugin and therefore use object-style markup?
A
On Fri, 23 Feb 2007 15:15:13 -, Gervase Markham [EMAIL PROTECTED]
wrote:
Postcode would be easiest way to integrate location API with existing
services (especially via userjs/greasemonkey, where using
location-postcode database may be difficult).
The problem with suggestions like
On Wed, 21 Feb 2007 20:31:11 -, Ryan Sarver
[EMAIL PROTECTED] wrote:
var location = window.getLocation();
For some applications location given in format other than lat/long may be
more useful and less privacy-sensitive.
For example name of the city might be good enough if you order
On Wed, 24 Jan 2007 21:55:16 -, Simon Pieters [EMAIL PROTECTED]
wrote:
However, this doesn't solve the use case of saving an unfinished form
server-side.
Are there any real-world examples where you can save an unfinished form
on the server and continue filling it afterwards, that
On Tue, 16 Jan 2007 12:59:56 -, Henri Sivonen [EMAIL PROTECTED] wrote:
Is E4X allowed in event handler attribute values and in javascript:
URIs? If yes, how can a UA know whether the E4X parse mode should be
used?
This can be explictly stated using Content-Script-Type HTTP header/meta
On Tue, 09 Jan 2007 23:47:46 -, James Graham [EMAIL PROTECTED] wrote:
FWIW this all makes just as much sense with dictionary replaced by
stylesheet (stylesheets need to be kept in sync as new elements,
classes and ids are used rather than new words).
Not entirely. The layout and
On Tue, 09 Jan 2007 13:03:04 -, Leons Petrazickis
[EMAIL PROTECTED] wrote:
I would suggest that the first priority is getting a naive hyphenator
into browsers. Since you only ever need hyphenation when
full-justifying
I disagree. It's also needed in narrow columns, even if they're
On Thu, 04 Jan 2007 00:58:34 -, Ian Hickson [EMAIL PROTECTED] wrote:
What's the use case for div elements containing inlines?
From microformats.org:
div class=vcard
a class=url fn href=http://tantek.com/;Tantek Çelik/a
div class=orgTechnorati/div
/div
It can be generalized to when
On Mon, 02 Oct 2006 17:00:02 +0100, Shawn Wilsher [EMAIL PROTECTED]
wrote:
Hopefully, you aren't duplicating work that has already been done here:
https://sourceforge.net/projects/wf2/
Granted, this is only for IE, but nearly half of your work is already
done then.
This project appears
On Mon, 02 Oct 2006 17:37:28 +0100, Shawn Wilsher [EMAIL PROTECTED]
wrote:
This project appears to be dead for over a year now. It seems to have at
least intention to support Gecko, but I couldn't get it to work properly
in Firefox.
Just because the project appears to be dead doesn't mean
On Tue, 29 Aug 2006 17:02:22 +0100, Francisco Monteiro
[EMAIL PROTECTED] wrote:
What practical use has this for Mr Joe Public?
Give me a really useful example in very simple wording!
Having data table representing list of items where large clickable area is
useful - i.e. inbox in a
On Tue, 29 Aug 2006 22:55:01 +0100, Matthew Raymond
[EMAIL PROTECTED] wrote:
Having data table representing list of items where large clickable area
is useful - i.e. inbox in a webmail, list of contacts, forum threads
listing, etc.
I've ran into this problem many times and seen many
);
...which seems much better to me than using a string.
It's the first time I see apply method used. I couldn't find it in
ECMA262-3 nor in WA1.0. Can you give me a hint where it's defined?
Why is that better than using string?
--
regards, Kornel Lesinski
to behavior where space is both
separator and part of class name.
--
regards, Kornel Lesinski
, hitting enter would
never end form, and you would be 'stuck' on the first one.
I find Opera's solution very useful and I think it would be shame if Opera
was made conformant with less sophisticated specification of default
submit button in WF2.
--
regards, Kornel Lesinski
On Wed, 27 Jul 2005 13:32:10 +0100, Anne van Kesteren
[EMAIL PROTECTED] wrote:
Quoting Kornel Lesinski [EMAIL PROTECTED]:
This makes a lot of sense on forms like:
select input submit value=confirm selection
input file input submit value=upload this file
input text
input submit vaule=submit
.
--
regards, Kornel Lesinski
makes workaround more difficult, but OTOH current
Opera's solution is good enough.
--
regards, Kornel Lesinski
, Kornel Lesinski
be prevented by forcing some special
handshake or transport protocol for custom connections...
but then this feature becomes just alternative HTTP + XML RPC that only
offers smaller lag for price of increased complexity and worse
browser/server support. Is it worth it?
--
regards, Kornel Lesinski
.
--
regards, Kornel Lesinski
I'm strongly against anchors submitting data.
Main use of it would be for clueless designers that have no idea about
usability and UI consistency.
This illustrates the problem better than words:
http://browsehappy.pl/i/apost.png
--
regards, Kornel Lesinski
.
--
pozdrawiam, Kornel Lesinski
);}
canvas.onlyForCSS {display: none;}
--
regards, Kornel Lesinski
should require the prototyping of these objects? I would be very
much opposed to this, requiring a particular coupling to javascript is
not a good idea.
But such coupling is already there for every current form element.
Prototypes are required by ECMA script already.
--
regards, Kornel Lesinski
:
article aside {display: none;}
This also may be useful for search engines - they could omit aside
in quoted page fragments.
That element could play role as opposite of em and strong.
--
regards, Kornel Lesinski
90 matches
Mail list logo
