Add configs for web application manifest files #29
Comments
alrra
changed the title
|
@marcoscaceres can you take a look over my previous comment and tell me if I missed something? Feel free to ignore the Apache related technical details. Thanks! |
alrra
changed the title
alrra
changed the title
alrra
changed the title
alrra
changed the title
* Provide examples on how to set the correct MIME type, namely
`application/manifest+json`.
* Configure Apache to serve these files:
* compressed
* with far-future expires headers (as recommended by the
specification: http://w3c.github.io/manifest/#h_note_7)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Specification:
* http://w3c.github.io/manifest/
Support coming soon to:
* Chrome: https://code.google.com/p/chromium/issues/detail?id=366145
* Firefox: https://bugzilla.mozilla.org/show_bug.cgi?id=997779
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Ref: http://w3c.github.io/manifest/
#29
Close: #29
|
(I'm at workshop this week, but will try to take a look on Friday - at first glance, I'm really excited to see this in h5bp!) |
|
Just quickly:
This is not a "MUST" - just a recommendation. The obtainer doesn't enforce the MIME type, so serving it as JSON or whatever is fine. About "./well-known/manifest.json", this is what my .htaccess file has to support this: About encoding, I think it must be UTF-8 or I think JSON.parse() in the browser will reject it. About 6. A CSP directive is forthcoming... working with the WebSec group on that... will prob. be: |
Update inline comments regarding the web application manifest file to point out that it is recommended (not mandatory) that this file should be serve with the `application/manifest+json` media type. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - From http://w3c.github.io/manifest/: " If the protocol over which the manifest is transferred supports the [MIME-TYPES] specification (e.g. HTTP), it is RECOMMENDED that the manifest be labeled with the media type for a manifest. " Thanks @marcoscaceres for pointing that out! Ref: #29 (comment)
|
@marcoscaceres Thanks for your comment, I sincerely appreciate it!
Thanks, I've updated the inline comments.
I recently updated the configs to allow access to the visible content from within the
Already covered! :)
We are only providing an example on how to set the CSP header, so as long as @mikewest updates the CSP specification (and maybe even the html5rocks article), we're good. @marcoscaceres let me know if there is anything else I've missed. |
|
LGTM! Thanks again. |
|
@marcoscaceres thanks again! |
and others
Specification: http://w3c.github.io/manifest/
Browser support coming soon in: Chrome and Firefox
The web application manifest file:
Content-Type, namely:application/manifest+json.From http://w3c.github.io/manifest/#h3_obtaining-a-manifest:
It seems we cannot reliably set the
Content-Typefrom the.htaccessfile, because:if
<link rel="manifest"...>is used, we can't know the exact location and name of the manifest fileif
<link rel="manifest"...>is NOT used, the location of the manifest is assume to be/.well-known/manifest.json, but even this default location can't be (AFAIK) correctly matched from within the.htaccessfile, as it requires the use of a directive such as<Location>, e.g.:Also, doing something like:
isn't a good default, as it will match all files with that specific name.
So, we will just have to add a comment (with some examples), and let the user handle this part.
jsonormanifest):jsonormanifest):The text was updated successfully, but these errors were encountered: