I searched the list, and looked at the HTML5 briefly and found nothing,
nor can I ever recall such.
So this is both a question and a proposal.
On my own site currently I mostly replicate the first paragraph of an
article in my journal as the meta description,
and write one up for other pages,
On 2010-03-18 03:37, Roger Hågensen wrote:
I know, replying to myself is a big no-no... *cough*
I searched the list, and looked at the HTML5 briefly and found
nothing, nor can I ever recall such.
So this is both a question and a proposal.
On my own site currently I mostly replicate the first
On 2010-03-17 17:28, Jonas Sicking wrote:
/ I'm wondering if data-* attributes should be renamed to priv-* to make
// it clearer that it's page's _private_ data.
//
// data- is such a nice generic prefix that I'm afraid sooner or later
// someone will start basing microformats-like markup on
On 2010-03-18 10:04, Ashley Sheridan wrote:
The main problem with that would be that parsers would then need to
read into the body of the page to produce a description of your
site. This might not produce much of an overhead on a one-off basis,
but imagine a parser that is grabbing the
On 2010-03-18 13:13, Julian Reschke wrote:
On 18.03.2010 03:37, Roger Hågensen wrote:
I searched the list, and looked at the HTML5 briefly and found nothing,
nor can I ever recall such.
So this is both a question and a proposal.
On my own site currently I mostly replicate the first paragraph
./p
pMore content here./p
footerAuthor: a href=example.com/author/url/ id=#authorRoger
Hågensen/a on time datetime=2010-03-18T08:00:00 id=#date18th
March 2010 at 8 o'clock./timebr /
span id=#copyright© Roger Hågensen 2010/spanbr /
Keywords: span id=#keywordsa
href=http://example.com/tag/Example
On 2010-03-19 15:17, Ashley Sheridan wrote:
Search engines and people are not the only content parsers. Sure, you
would expect a parser to maybe look further into the content if the
description meta tag was missing, but imagine if a parser had to do
this for all the content it looked at? There
On 2010-03-19 15:43, Ashley Sheridan wrote:
On Fri, 2010-03-19 at 15:43 +0100, Roger Hågensen wrote:
On 2010-03-19 15:17, Ashley Sheridan wrote:
Search engines and people are not the only content parsers. Sure, you
would expect a parser to maybe look further into the content
On 2010-03-19 17:19, Roger Hågensen wrote:
On 2010-03-19 15:43, Ashley Sheridan wrote:
On Fri, 2010-03-19 at 15:43 +0100, Roger Hågensen wrote:
On 2010-03-19 15:17, Ashley Sheridan wrote:
I just feel that thehead andbody areas of a page have two
distinct uses, and unnecessary crossovers
On 2010-03-24 12:54, Henri Sivonen wrote:
I tried to test if the top 4 browser engines have a hard limit on the length of
attribute values in their HTML parsers. If they do, it's somewhere over 6.5
million characters.
Does any one of the top 4 browser engines have a hard limit that is higher
On 2010-03-24 21:28, Boris Zbarsky wrote:
On 3/24/10 4:20 PM, Roger Hågensen wrote:
Obviously it would be silly with 6.5MiB attributes as I'd certainly
believe that to be a bug or broken tags myself if encountered.
Or an SVG path... I've certainly seen SVG files with multi-megabyte
paths
Idea originally posted at
https://bugzilla.mozilla.org/show_bug.cgi?id=409508
META name=Ping-prefix content=/trackout/
If the browser see this meta tag it will behave as if ping attribute was
applied to all externally leading hrefs with the prefix added to the start.
In the example above this
On 2010-04-27 00:41, Aryeh Gregor wrote:
On Mon, Apr 26, 2010 at 4:17 PM, Roger Hågensenresca...@emsai.net wrote:
Oh, and could someone on the HTML5 list poke some of the guys over there and
see if a ping attribute for the body tag in a similar vein could be
considered?
This *is*
On 2010-05-23 23:49, Simon Pieters wrote:
On Sat, 22 May 2010 21:06:53 +0200, L. David Baron dba...@dbaron.org
wrote:
The rules for parsing a legacy color value in
http://www.whatwg.org/specs/web-apps/current-work/complete/common-microsyntaxes.html#rules-for-parsing-a-legacy-color-value
On 2010-05-31 09:57, Roger Hågensen wrote:
On 2010-05-23 23:49, Simon Pieters wrote:
On Sat, 22 May 2010 21:06:53 +0200, L. David Baron
dba...@dbaron.org wrote:
The rules for parsing a legacy color value in
http://www.whatwg.org/specs/web-apps/current-work/complete/common-microsyntaxes.html
On 2010-06-04 18:39, Daniel Persson wrote:
I am not advocating ad-tags. The idea of globally structuring content
on the web is very appealing, it would make it easier for a lot of
things and a lot of people. Let's do it!
...but I can't see it happening where body would be main content +
ads +
On 2010-06-04 22:03, Tab Atkins Jr. wrote:
On Fri, Jun 4, 2010 at 12:58 PM, Roger Hågensenresca...@emsai.net wrote:
...
As you can see the aside is outside the body, all latest browsers seem to
handle this pretty fine.
http://validator.w3.org/ on the other hand gives the error Line 12, Column
On 2010-07-04 14:34, Marques Johansson wrote:
Another way about handling this PPI ratio business would be with HTTP
300 multiple choice.
http://www.w3.org/Protocols/rfc2616/rfc2616-sec10.html#sec10.3.1
This may not be the best answer for every image on a page, but the
first HTML page in a
On 2010-07-30 20:54, Eduard Pascual wrote:
On Fri, Jul 30, 2010 at 12:36 PM, Dennis Joachimsthalerden...@efjot.de wrote:
Having a Content-Disposition property ona tags which does the same as
the HTTP Header.
For example changing the file name of the file to be downloaded or rather
have a
On 2010-07-31 03:57, Roger Hågensen wrote:
Another example:
a href=cool.png downloadimage src=cool_sm.jpg/a
How many here have had that wishful thinking work exactly like you wanted?
That is the minimal use case, old browsers would behave as currently,
those supporting this on the other hand
On 2010-07-31 04:17, Boris Zbarsky wrote:
On 7/30/10 9:57 PM, Roger Hågensen wrote:
a href=stuff.zip downloadThis defaults to application/octet-stream
and clicking the link will behave as if the user selected Save As from
UI context menu!/a
I would object to implementing this. I have
On 2010-07-30 20:54, Eduard Pascual wrote:
Let me complement the proposal with a use case:
http://stackoverflow.com/questions/3358209/triggering-a-file-download-without-any-server-request
Now something like that is a bit more tricky, but can't Javascript
actually trigger a proper Save As?
On 2010-07-31 04:52, Boris Zbarsky wrote:
When I say the Save As UI I mean the one you get currently, which
varies, some browsers only provide a Save As and Cancel, while others
provide Save As with Open and Cancel.
I can't name a single browser that provides an Open option if you
select
On 2010-08-25 21:09, Ian Hickson wrote:
On Fri, 30 Jul 2010, Dennis Joachimsthaler wrote:
Having a Content-Disposition property ona tags which does the same as
the HTTP Header. For example changing the file name of the file to be
downloaded or rather have a image file download rather than it
On 2010-08-31 22:11, James Salsman wrote:
Does anyone object to form input type=file
accept=audio/*;capture=microphone using Speex as a default, as if it
were specified
accept=audio/x-speex;quality=7;bitrate=16000;capture=microphone or
to allowing the requesting of different speex qualities and
On 2010-09-01 21:34, David Singer wrote:
seems like a comma-separated list is the right way to go, and that audio/*
should mean what it says -- any kind of audio (whether that is useful or not
remains to be seen).
I would suggest that this is likely to be used for short captures, and that
On 2010-09-04 01:55, James Salsman wrote:
Most of the MIME types that support multiple channels and sample rates
have registered parameters for selecting those. Using a PCM format
such as audio/L16 (CD/Red Book audio) as a default would waste a huge
amount of network bandwidth, which
/stream
that is sent to the browsers in case the file don't originally have a
BIN header...
(C) 2010 Roger Hågensen.
***
I really should re-write it all as it's kind of messy, an early draft as
I said,
and was first scribbled down over half
On 2010-09-09 09:24, Philip Jägenstedt wrote:
On Thu, 09 Sep 2010 02:15:27 +0200, David Singer sin...@apple.com
wrote:
On Wed, Sep 8, 2010 at 3:13 PM, And Clover and...@doxdesk.com wrote:
Perhaps I *meant* to serve a non-video
file with something that looks a fingerprint from a video format
On 2010-09-11 03:40, Silvia Pfeiffer wrote:
[snip...]
And yeah, this kinda stretched beyond the scope of HTML5 specs,
but you'd be swatting two flies at once, solving the sniffing
issue with video and audio, but also the sniffing issue that
every OS has had for the last couple
On 2010-09-11 05:23, Eric Carlson wrote:
On Sep 10, 2010, at 8:06 PM, Biju wrote:
On Fri, Sep 10, 2010 at 7:05 AM, Silvia Pfeiffer
silviapfeiff...@gmail.com wrote:
Incidentally: What use case did you have in mind, Biju ?
I was thinking about applications like
On 2010-09-13 15:03, Mikko Rantalainen wrote:
2010-09-11 01:51 EEST: Roger Hågensen:
On 2010-09-09 09:24, Philip Jägenstedt wrote:
For at least WAVE, Ogg and WebM it's not possible as they begin with
different magic bytes.
Then why not define a new magic that is universal, so
On 2010-09-13 15:55, Nils Dagsson Moskopp wrote:
Mikko Rantalainenmikko.rantalai...@peda.net schrieb am Mon, 13 Sep
2010 16:03:27 +0300:
[…]
Basically, this sounds like all the issues of BOM for all binary
files.
And why do we need this? Because web servers are not behaving
correctly and
On 2010-09-14 08:37, Julian Reschke wrote:
On 13.09.2010 23:51, Aryeh Gregor wrote:
...
And for heavens sake, do not specify any sniffing as official.
Instead, explicitly specify all sniffing as UA specific and possibly
suggest that UAs should inform the user that content is broken and the
On 2010-09-16 15:17, Mikko Rantalainen wrote:
2010-09-13 16:44 EEST: Roger Hågensen:
On 2010-09-13 15:03, Mikko Rantalainen wrote:
And why do we need this? Because web servers are not behaving correctly
and are sending incorrect Content-Type headers? What makes you believe
that BINID
On 2010-09-20 02:37, Aryeh Gregor wrote:
2010/9/19 Julian Reschkejulian.resc...@gmx.de:
So it's a workaround that causes a performance optimization. It wouldn't be
necessary if the linked resource would have the right caching information in
the first place.
Sure it would. You can currently
On 2010-09-20 05:09, Robert O'Callahan wrote:
On Sun, Sep 19, 2010 at 10:57 PM, Shiv Kumar sku...@exposureroom.com
mailto:sku...@exposureroom.com wrote:
I'm glad to see that people do see the need to change (or specify
in more detail) the behavior of the poster at least insofar as it
On 2010-09-20 05:27, Chris Pearce wrote:
Right, so you want to be able to toggle the poster back on (when the
media is paused or ended) but after playback has started.
I wonder if these are separate use cases, e.g. whether users would
want to display a different image from the poster image
On 2010-09-20 10:16, Olli Pettay wrote:
I do think browser UI for large uploads is terrible and needs to
be fixed.
I agree!
Yeah, the UI is terrible, but that is about browser implementations and
not about any specification.
Well! There is nothing preventing the specs from providing a
On 2010-09-21 00:38, Shiv Kumar wrote:
Scenario 1:
We now have the option define if an element is required and the form
will validate the value such elements before submission. That's a step
in the right direction. However, it so happens different
implementation do different things in the
On 2010-09-21 00:59, Nils Dagsson Moskopp wrote:
21.09.10 Roger Hågensenresca...@emsai.net:
Well! There is nothing preventing the specs from providing a minimum
UI guideline that should be followed by UAs.
UAs compete on interface, too. As long as the standards are open and
consistent, why
On 2010-09-22 21:56, ben turner wrote:
Sorry folks, this went to the wrong list! Please ignore.
-Ben
On Wed, Sep 22, 2010 at 12:55 PM, ben turnerbent.mozi...@gmail.com wrote:
Hi folks,
While implementing the latest setVersion changes I came across this problem:
Let's say that a site is
On 2010-12-08 20:44, Ian Hickson wrote:
On Mon, 20 Sep 2010, Roger Hågensen wrote:
It would be better to define this as explicitly indicating which
resources are NOT valid any longer, with most sites/web applications
this would only be a select few links.
Doing that would require knowing what
On 2010-12-14 16:12, Bjartur Thorlacius wrote:
On 12/13/10, Diogo Resendedrese...@thinkdigital.pt wrote:
Bjartur, I think you misunderstood our point. The idea is to have a way of
accessing this kind of devices (not necessarily by bt or usb). The
difference of this kind of devices is they're
On 2010-12-15 18:02, Aryeh Gregor wrote:
On Tue, Dec 14, 2010 at 10:12 AM, Bjartur Thorlacius
svartma...@gmail.com wrote:
I still don't grasp how that could be useful. Please provide an example.
So you've got a non-kb, mouse, headphone or camera device, say a
permanent storage drive.
No, not
On 2010-12-18 18:58, Charles Pritchard wrote:
On 11/24/2010 10:23 AM, Boris Zbarsky wrote:
On 11/24/10 4:13 AM, Charles Pritchard wrote:
And, these aren't great lengths. It's about 6 lines of javascript.
Uh... That depends on how your drawing path is set up. If I understand
correctly what
On 2010-12-28 09:53, Silvia Pfeiffer wrote:
How about making a concrete proposal as to what it should look like?
If Google was to implement it and turn it into a concrete proposal, I
wouldn't have a problem with it either. As it is right now the spec
for usb/RS232 is useless IMHO.
Silvia.
On 2010-12-28 03:16, Seth Brown wrote:
I also believe that the working group should make the device element
spec a high priority. If you don't google will probably implement
their own version for chrome OS(it will be necessary in a browser
based OS model).
Thanks,
Seth Brown
Not really!
On 2011-01-02 03:27, Kornel Lesiński wrote:
On Sun, 02 Jan 2011 00:53:48 -, Charles Pritchard
ch...@jumis.com wrote:
ArrayBuffer and Canvas use contiguous memory segments. You don't need
a complex GC pass to let those ones go.
For my use cases, those are the two types I'm working with.
On 2011-01-05 02:39, Ian Hickson wrote:
On Wed, 20 Oct 2010, Jens M�ller wrote:
now that device orientation, geolocation, camera etc. have been spec'ed:
Is there any intent to provide an API for pressure sensors?
This might well be the next hip feature in smartphones ...
Oh, and while we are
On 2011-01-05 06:10, Boris Zbarsky wrote:
On 1/4/11 10:51 PM, Glenn Maynard wrote:
On Tue, Jan 4, 2011 at 10:53 PM, Boris Zbarskybzbar...@mit.edu wrote:
Note that you keep comparing websites to desktop software, but desktop
software typically doesn't change out from under the user (possibly
On 2011-01-05 01:07, Seth Brown wrote:
I couldn't agree more that we should avoid turning this into vista's UAC.
The issue with UAC is not UAC.
UAC (especially the more dilligent one on Vista) merely exposed
programmers and software expecting raised priviledges while they
actually did not
On 2011-01-04 22:59, Seth Brown wrote:
That being said. Granting access to a particular script instead of an
entire site sounds like a reasonable security requirement to me. As
does using a hash to verify that the script you granted permission to
hasn't changed.
-Seth
A hash (any hash in
On 2011-01-06 14:09, timeless wrote:
I'm kinda surprised that servers and CAs don't have better support for
reminding admins of this stuff.
I know for mozilla.org, nagios is responsible for warning admins.
The odd thing (to me) is that CAs make money selling certs, so one
would expect them to
On 2011-01-17 18:36, Markus Ernst wrote:
Am 17.01.2011 17:41 schrieb Jeroen Wijering:
We are getting some questions from JW Player users that HTML5 video
is quite wasteful on bandwidth for longer videos (think 10min+). This
because browsers download the entire movie once playback starts,
On 2011-01-18 01:30, Boris Zbarsky wrote:
On 1/17/11 6:04 PM, Boris Zbarsky wrote:
From a user's perspective (which is what I'm speaking as here), it
doesn't matter what the technology is. The point is that there is
prevalent UI out there right now where pausing a moving will keep
buffering it
On 2011-01-20 19:16, Zachary Ozer wrote:
== New Proposal ==
I like this. It seems you laid out everything to ensure a balanced
buffer, kinda like a moving window buffer which I pointed out earlier.
So as far as I can see, your proposal looks pretty solid, unless there
are any implementation
On 2011-01-21 22:15, Gregory Maxwell wrote:
I don't like keyframe seeking as the default. Keyframe seeking
assumes things about the container, codec, and encoding which may not
be constants or even applicable to all formats. For example a file
with rolling intra may have no keyframes, and yet
On 2011-01-21 22:04, Philip Jägenstedt wrote:
Concretely: Add seek(time, flags) where flags defaults to nothing.
Accurate seeking would be done via seek(time, accurate) or some
such. Setting currentTime is left as is and doesn't set any flags.
Hmm. I think the default (nothing) should be
On 2011-01-21 21:50, Glenn Maynard wrote:
On Fri, Jan 21, 2011 at 1:55 PM, David Flanaganda...@davidflanagan.com wrote:
Doesn't the current XHR2 spec address this use case?
Browsers don't seem to implement it yet, but shouldn't something like this
work for the original poster?
He wants to be
On 2011-01-21 22:57, Silvia Pfeiffer wrote:
On Sat, Jan 22, 2011 at 8:50 AM, Roger Hågensenresca...@emsai.net wrote:
On 2011-01-21 22:04, Philip Jägenstedt wrote:
Concretely: Add seek(time, flags) where flags defaults to nothing.
Accurate seeking would be done via seek(time, accurate) or some
On 2011-01-21 23:48, Gregory Maxwell wrote:
It seems surprising to me that we'd want to expose something so deeply
internal while the API fails to expose things like chapters and other
metadata which can actually be used to reliably map times to
meaningful high level information about the
On 2011-01-22 01:27, Silvia Pfeiffer wrote:
It seems surprising to me that we'd want to expose something so deeply
internal while the API fails to expose things like chapters and other
metadata which can actually be used to reliably map times to
meaningful high level information about the
On 2011-02-02 23:48, Jonas Sicking wrote:
I think my latest proposed change makes this a whole lot better since
the state is immediately available to scripts. The problem with only
sticking the state in an event is that there is really no good point
to fire the event. The later you fire it the
On 2011-02-05 04:39, Boris Zbarsky wrote:
On 2/4/11 7:42 PM, Adam Barth wrote:
interface Crypto {
Float32Array getRandomFloat32Array(in long length);
Uint8Array getRandomUint8Array(in long length);
};
The Uint8Array version is good; let's do that.
For the other, what does it mean to
On 2011-02-06 03:34, Boris Zbarsky wrote:
The context in which I've seen people ask for cryptographically secure
Math.random are cases where one script can tell what random numbers
another script got by examining the sequence of random numbers it's
getting itself. But I was never told what
On 2011-02-05 11:10, Adam Barth wrote:
On Fri, Feb 4, 2011 at 9:00 PM, Cedric Viviercedr...@neonux.com wrote:
getRandomValues(in ArrayBufferView data)
Fills a typed array with a cryptographically strong sequence of random values.
The length of the array determines how many cryptographically
On 2011-02-06 05:07, Cedric Vivier wrote:
On Sun, Feb 6, 2011 at 11:34, Roger Hågensenresca...@emsai.net wrote:
But getRandomValues(in ArrayBufferView data) seem to indicate that each byte
(value) is random, limited to an array of 8bit data?.
In the context of typed arrays, a value depends of
On 2011-02-06 04:54, Boris Zbarsky wrote:
On 2/5/11 10:22 PM, Roger Hågensen wrote:
This is just my oppinion but... If they need random number generation in
their script to be cryptographically secure to be protected from another
spying script...
then they are doing it wrong. Use HTTPS, issue
On 2011-03-02 18:42, Bjartur Thorlacius wrote:
Just see what happens when users login to a site, then navigate to
another and authenticate to the latter, and then logout from the
latter. In that case, they're still authenticated to the former site.
In theory, this shouldn't be a problem, as
On 2011-03-02 02:31, Tatham Oddie wrote:
Glenn,
That's an XP path you've provided.
On Vista or 7 it'd be:
C:\Users\tatham.oddie\AppData\Local\Google\Chrome\User
Data\Default\Storage
Microsoft explicitly did work in Vista to reduce the lengths of those base
paths.
Now, the Google
On 2011-03-03 10:44, Dave Kok wrote:
Op 02-03-11 22:11:48 schreef Roger Hågensen:
Method #3:
The server (or serverside script, like PHP or similar) sends the
following to the browser:
header('HTTP/1.0 401 Unauthorized');
header('WWW-Authenticate: Close realm=My Realm');
*PS
http://html5test.com/
Now that Firefox 4 is out as well as IE9 those tests are starting to
look real good.
With the WebM plugin for IE9, WebM is now possible in all the big 4
(Opera, IE, FF, Chrome) browsers (haven't tested Safari but like Chrome
it uses Webkit so should be similar).
Opera
On 2011-07-08 12:32, Mark Callow wrote:
On 08/07/2011 11:54, James Robinson wrote:
True. On OS X, however, the CoreVideo and CoreAudio APIs are specified to
use a unified time base (see
Just some trivia/news of some interest to HTML5 supportes:
NRK (similar to what BBC is in England) has decided to focus on HTML5.
http://www.digi.no/885011/nrk-gaar-for-html5
On 2012-03-28 12:01, Mark Callow wrote:
On 28/03/2012 18:45, Boris Zbarsky wrote:
On 3/28/12 2:40 AM, Mark Callow wrote:
Because you said JS-visible state (will) always be little-endian.
So? I don't see the problem, but maybe I'm missing something...
The proposal is that if you take an
On 2012-11-07 23:41, Ian Hickson wrote:
On Thu, 8 Nov 2012, Ben Schwarz wrote:
What does concern me, as a web builder, *every day*, is how I markup the
content in-between a header and a footer.
If you just want it for styling purposes, div is perfect.
article
headerh1, h2, p/header
div
On 2012-11-08 10:51, Steve Faulkner wrote:
What the relevant new data clearly indicates is that in approx 80% of cases
when authors identify the main area of content it is the part of the
content that does not include header, footer or navigation content.
It also indicates that where skip
Starting a new subject on this to keep the email threads more clear:
Suggestion is that the following should be possible,
this would allow body to act as if it was a main.
!doctype html
html
head
titleheader and footer outside body/title
style
body {border:1em solid #7f2424;}
header {border:1em
On 2013-03-18 13:50, Bjoern Hoehrmann wrote:
* Jonas Sicking wrote:
It's currently unclear what to do if a page contains markup like a
href=page.txt download=A.txt if the resource at audio.wav
responds with either
1) Content-Disposition: inline
2) Content-Disposition: inline; filename=B.txt
3)
On 2013-03-19 15:31, Nils Dagsson Moskopp wrote:
Roger Hågensen resca...@emsai.net schrieb am Tue, 19 Mar 2013
14:31:15 +0100:
[…]
What should be shown if there is an issue/conflict?
Maybe:
Download https://example.com/reports/1/xml/; as report1.xml ?
WARNING! File identified as actually
On 2013-03-20 10:18, Markus Ernst wrote:
The problem is that some users do not even start to type when they see
text in the field they focused. Thus I strongly believe that some
visible hint at the _focusing_ moment would be helpful for these
users. If the Opera and IE behaviour of totally
On 2013-03-21 14:02, Markus Ernst wrote:
Am 21.03.2013 12:10 schrieb James Ross:
Just as an added data-point (that I only noticed today) - Windows 7's
placeholder implementation in the Start menu and Explorer's search box:
- Focusing the input box with tab/Control-E or autofocus when
opening
On 2013-05-03 08:29, Gray Zhang wrote:
Not sure if WHATWG is doing anything, but in the W3C there
ishttps://dvcs.w3.org/hg/screen-orientation/raw-file/tip/Overview.html
in the Web Apps group
...
How would it behave if my web app requests orientation locking but is
placed in an `iframe`
On 2013-07-13 06:17, Glenn Maynard wrote:
Changing orientation is disruptive.
I can hardly imagine how obnoxious Web browsing would be on a mobile
device, if every second page I navigated to decided to flip my device to a
different orientation. This feels like the same sort of misfeature as
On 2014-10-13 15:53, Anne van Kesteren wrote:
Per XMLHttpRequest User-Agent has been off limits for script. Should
we keep it that way for fetch()? Would it be harmful to allow it to be
omitted?
https://github.com/slightlyoff/ServiceWorker/issues/399
A possible attack I can think of would be
On 2014-10-13 16:16, Nils Dagsson Moskopp wrote:
Anne van Kesteren ann...@annevk.nl writes:
Per XMLHttpRequest User-Agent has been off limits for script.
Reporting UA “Mozilla/4.0 (MSIE 6.0';DROP TABLE browsers;--u{!=})”
broke hilariously many sites when I did have set it as my default UA
On 2014-10-15 18:10, Tab Atkins Jr. wrote:
On Wed, Oct 15, 2014 at 8:59 AM, Domenic Denicola
dome...@domenicdenicola.com wrote:
For the XSS attacker, couldn't they just use
`theInput.removeAttribute(writeonly); alert(theInput.value);`?
Or is this some kind of new un-removable attribute?
Was Re: [whatwg] Proposal: Write-only submittable form-associated
controls.
On 2014-10-16 01:31, Eduardo' Vela Nava wrote:
If we have a password manager and are gonna ask authors to modify their
site, we should just use it to transfer real credentials, not passwords..
Passwords need to die
On 2014-10-17 17:09, Nils Dagsson Moskopp wrote:
Roger Hågensen resca...@emsai.net writes:
Also http logins with plaintext transmission of passwords/passphrases
need to go away, and is a pet peeve of mine, I detest Basic
HTTP-Authentication which is plaintext.
Note that Basic Auth + HTTPS
On 2014-11-03 17:42, Anne van Kesteren wrote:
https://wiki.whatwg.org/wiki/Sharing/API has a sketch for what a very
minimal Sharing API could look like.
I have often pondered the same when seeing a Share button or icon on a
webpage.
Some solutions have a single icon that pops up a menu,
On 2014-11-07 20:01, Nils Dagsson Moskopp wrote:
Roger Hågensen resca...@emsai.net writes:
A link element in the header, maybe call it link rel=share
href=http://example.com/article/12345/; /
or link rel=share / if the current url (or the canonical url link if
present) should be used, although
On 2014-11-10 10:35, Anne van Kesteren wrote:
On Fri, Nov 7, 2014 at 7:38 PM, Roger Hågensen resca...@emsai.net wrote:
A worthy goal would be to help developers de-clutter websites from all those
share icons we see today, so if this could be steered towards that it would
be great.
That is what
On 2014-11-11 23:31, Markus Lanthaler wrote:
On 7 Nov 2014 at 20:01, Nils Dagsson Moskopp wrote:
Roger Hågensen resca...@emsai.net writes:
A link element in the header, maybe call it link rel=share
href=http://example.com/article/12345/; /
or link rel=share / if the current url
On 2014-11-13 18:11, Nils Dagsson Moskopp wrote:
Roger Hågensen resca...@emsai.net writes:
I just checked WHATWG HTML5 and rel=bookmark isn't there at all (I
didn't check W3C HTML5 though).
The section on the bookmark link type in WHATWG HTML can be found here:
https://html.spec.whatwg.org
On 2014-11-13 18:19, Nils Dagsson Moskopp wrote:
AFAIK, all of these interface details lie outside the scope of the
HTML specification (and rightly so, IMHO). If you need a standard
symbol for bookmarks I suggest to use U+1F516 BOOKMARK, which looks
like this „“.
Then don't spec it but
On 2014-11-13 20:20, Evan Stade wrote:
Currently this new behavior is available behind a flag. We will soon be
inverting the flag, so you have to opt into respecting autocomplete=off.
I don't like that browsers ignore HTML functionality hints like that.
I have one real live use case that
On 2014-11-14 02:49, Glenn Maynard wrote:
On Thu, Nov 13, 2014 at 7:17 PM, Roger Hågensen resca...@emsai.net wrote:
I have one real live use case that would be affected by this.
http://player.gridstream.org/request/
Unfortunately, even if a couple pages have a legitimate use for a feature
On 2014-11-14 02:49, Glenn Maynard wrote:
Unfortunately, even if a couple pages have a legitimate use for a
feature, when countless thousands of pages abuse it, the feature needs
to go. The damage to people's day-to-day experience outweighs any
benefits by orders of magnitude.
Also, banks
On 2014-11-14 03:57, Ben Maurer wrote:
If the site sets autocomplete=off could you disable the saving of new
suggestions? One of the main use cases for turning off autocomplete is to
disable the saving of sensitive or irrelevant information. If the user is
filling in an address or cc num it's
1 - 100 of 156 matches
Mail list logo