Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Find the best terminology to restrict the usage of data urls #1592

Closed
iherman opened this issue Mar 26, 2021 · 2 comments · Fixed by #1765
Closed

Find the best terminology to restrict the usage of data urls #1592

iherman opened this issue Mar 26, 2021 · 2 comments · Fixed by #1765
Labels
Cat-Security Grouping label for all security related issues EPUB33 Issues addressed in the EPUB 3.3 revision Spec-ReadingSystems The issue affects the EPUB Reading Systems 3.3 Recommendation tag-tracker Group bringing to attention of the TAG, or tracked by the TAG but not needing response.

Comments

@iherman
Copy link
Member

iherman commented Mar 26, 2021

There is no final agreement in the WG on how to precisely formulate the restrictions on the usage of data-url-s. The current formulation relies on the top-level browsing contexts term but that may not be adequate (e.g., if the top level document is an SVG file).

The generic goal is to disallow (for, e.g., security reasons) using, e.g., an <a> element referring to a data URL, while still making it possible to, use a data url in, say, an <img> element. Browsers implement similar restrictions, but the WG would need a generic, browser-independent terminology to include in the EPUB Reading System specification.
@iherman iherman added Cat-Security Grouping label for all security related issues tag-tracker Group bringing to attention of the TAG, or tracked by the TAG but not needing response. Spec-ReadingSystems The issue affects the EPUB Reading Systems 3.3 Recommendation labels Mar 26, 2021
@iherman
Copy link
Member Author

iherman commented Mar 26, 2021

Pinging explicitly @ylafon @hober

@w3cbot w3cbot mentioned this issue Mar 26, 2021
Open
@iherman iherman mentioned this issue May 13, 2021
Closed
@iherman
Copy link
Member Author

iherman commented Aug 4, 2021

See TAG reply

@iherman iherman mentioned this issue Aug 4, 2021
Merged
@iherman iherman linked a pull request Aug 4, 2021 that will close this issue
Finalize DATA URL formulation #1765
Merged
@mattgarrish mattgarrish added the EPUB33 Issues addressed in the EPUB 3.3 revision label Sep 14, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Cat-Security Grouping label for all security related issues EPUB33 Issues addressed in the EPUB 3.3 revision Spec-ReadingSystems The issue affects the EPUB Reading Systems 3.3 Recommendation tag-tracker Group bringing to attention of the TAG, or tracked by the TAG but not needing response.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Finalize DATA URL formulation w3c/epub-specs
2 participants
@iherman @mattgarrish