On Thu, Jun 30, 2011 at 1:35 PM, Boris Zbarsky bzbar...@mit.edu wrote:
The point of my proposal was to guarantee that mutation events are
delivered when the tree is in its freshly-mutated state and avoid the
need to maintain a list of pending callbacks.
That would be nice; the problem is
On Thu, Jun 30, 2011 at 3:55 PM, Boris Zbarsky bzbar...@mit.edu wrote:
On 6/30/11 6:33 PM, Ryosuke Niwa wrote:
I think most developers are concerned with paint to avoid flickering and
not so much about layout.
I meant from the implementation's point of view. E.g. if a node is
partially
On Wed, Jun 29, 2011 at 6:11 PM, Jonas Sicking jo...@sicking.cc wrote:
Maybe this is a stupid question, since I'm not familiar at all with
the use-cases involved, but why can't we delay firing the
notifications until the event loop spins? If we're already delaying
them such that there
On Thu, Jun 30, 2011 at 5:16 PM, Boris Zbarsky bzbar...@mit.edu wrote:
On 6/30/11 7:01 PM, Ryosuke Niwa wrote:
What do you mean by it being partially inserted? Like document
relationship, etc... aren't consistent?
That would be one example, yes. Firing mutation events as you go involves
On Wed, Jun 29, 2011 at 6:11 PM, Jonas Sicking jo...@sicking.cc wrote:
Jokes aside. I think the way to do this is that the spec should
introduce the concept of a compound mutating function. Functions
like insertBefore, removeChild and the innerHTML setter should claim
to be such functions.
On Mon, Jun 20, 2011 at 10:48 AM, Tab Atkins Jr. jackalm...@gmail.comwrote:
2. During a user-initiated click, you can lock the mouse to the target
or an ancestor without a permissions prompt, but with a persistent
message, either as an overlay or in the browser's chrome.
Does this mean that
On Wed, May 18, 2011 at 5:41 PM, João Eiras joao.ei...@gmail.com wrote:
More generic
- text/* (I've see in too many places mime-types like text/x-c-src, and
text is text.)
- application/*+xml
- application/*script (ecmascript, javascript)
How do we know that these types don't contain
On Wed, May 18, 2011 at 5:43 PM, João Eiras joao.ei...@gmail.com wrote:
But there is no way to access the clipboard contents. Or does execCommand
dispatch a synchronous event ?
It fires copy/paste events.
- Ryosuke
On Mon, May 16, 2011 at 9:34 PM, Hallvord R. M. Steen hallv...@opera.comwrote:
On Mon, 31 Jan 2011 20:25:20 +0900, Paul Libbrecht p...@activemath.org
wrote:
A website maker for, say, a shop for furnitures that knows they can go
into my home plan maker through the clipboard will want to be
On Tue, May 17, 2011 at 12:11 AM, Paul Libbrecht p...@activemath.orgwrote:
Ryosuke,
why would sensitive information be readable or writable?
Because it has been available through clipboard. e.g. a popular
productivity application puts a local file path in link elements whenever
you copy
On Tue, May 17, 2011 at 12:26 AM, Paul Libbrecht p...@activemath.orgwrote:
I agree it's a risk but since it's only when the user pastes intentionally,
I don't think it is a risk to be excluded.
I don't think it's okay. I didn't even save the file and file path was
invisible to a user. As a
On Tue, May 17, 2011 at 1:16 AM, Olli Pettay olli.pet...@helsinki.fiwrote:
I think Webkit's and Gecko's behavior makes more sense.
You paste to some location in the editable area, not to root of it.
But selection could be a range. Why would you arbitrarily pick one end
point?
- Ryosuke
Ryosuke Niwa
Software Engineer
Google Inc.
On Tue, May 17, 2011 at 10:48 AM, Paul Libbrecht p...@hoplahup.net wrote:
This was certainly at least copied in plain-text as well, or?
The risk is here today then already, correct? (even with traditional forms
and a quick onchange that makes
I think I have raised my concern before but what should happen if script
calls getData() within a copy/cut event handler? Should it return the
clipboard content after taking account the values set by setData? Or should
it always return the same value? Or should script be banned from calling
On Wed, May 4, 2011 at 2:46 PM, Daniel Cheng dch...@chromium.org wrote:
From my understanding, we are trying to protect against [1] hidden data
being copied without a user's knowledge and [2] XSS via pasting hostile
HTML. In my opinion, the algorithm as written is either going to remove too
On Tue, May 3, 2011 at 10:26 AM, Paul Libbrecht p...@hoplahup.net wrote:
As noted in the thread about security started by Halvord:
In many of the scenarios I have working for, the content to be put on the
clipboard would come from a luxury knowledge structure on the server, one
that has
On Thu, Mar 3, 2011 at 7:47 PM, Makoto Kato m_k...@ga2.so-net.ne.jp wrote:
Hi, Niwa-san.
On 2011/03/02 15:30, Ryosuke Niwa wrote:
You must have tested Chrome improperly. We currently have a bug in
Chrome. To see the bug, open the attached test and type nihao with
Chinese IME on Windows
On Tue, Mar 1, 2011 at 5:18 PM, Makoto Kato m_k...@ga2.so-net.ne.jp wrote:
On Safari 5, even if textbox has IME composition string, text into textbox
can be replaced by DOM/script. But other browser's behaviors are different,
and this is no specification when textbox has composition string.
On Mon, Jan 31, 2011 at 1:31 AM, Hallvord R. M. Steen hallv...@opera.comwrote:
On Mon, 31 Jan 2011 18:02:34 +0900, Ryosuke Niwa rn...@webkit.org wrote:
OK. Any particular reason? Are you looking at it from the implementor's or
the script author's perspective?
From script author's perspective
On Mon, Jan 31, 2011 at 3:25 AM, Paul Libbrecht p...@activemath.org wrote:
Le 31 janv. 2011 à 11:39, Daniel Cheng a écrit :
The way I'm working on implementing it (for drag and drop, though it
applies to copy and paste as well), arbitrary strings would not be
accessible from a non-DOM
On Mon, Jan 31, 2011 at 11:28 AM, Daniel Cheng dch...@chromium.org wrote:
On Mon, Jan 31, 2011 at 09:00, Ryosuke Niwa rn...@webkit.org wrote:
Making it live seems more efficient. If we allowed arbitrary MIME types
and spec'ed to always return the same data, then we must copy contents
decide what to do by themselves. For example, I'd
imagine browsers can implement some interactive UI that lets user decide
whether or not he/she wants to paste / copy certain content on demand.
Allowing access only within the event handler might be too restrictive.
Best regards,
Ryosuke Niwa
501 - 522 of 522 matches
Mail list logo