惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

G
GRAHAM CLULEY
S
Security @ Cisco Blogs
P
Proofpoint News Feed
Cisco Talos Blog
Cisco Talos Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
C
Cyber Attacks, Cyber Crime and Cyber Security
T
Tor Project blog
WordPress大学
WordPress大学
Project Zero
Project Zero
S
Schneier on Security
P
Proofpoint News Feed
小众软件
小众软件
P
Privacy International News Feed
美团技术团队
L
LangChain Blog
Know Your Adversary
Know Your Adversary
J
Java Code Geeks
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
The Register - Security
The Register - Security
N
Netflix TechBlog - Medium
Microsoft Security Blog
Microsoft Security Blog
Engineering at Meta
Engineering at Meta
I
InfoQ
量子位
Vercel News
Vercel News
博客园 - 三生石上(FineUI控件)
Spread Privacy
Spread Privacy
D
DataBreaches.Net
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
U
Unit 42
P
Privacy & Cybersecurity Law Blog
C
Cybersecurity and Infrastructure Security Agency CISA
T
The Blog of Author Tim Ferriss
Latest news
Latest news
K
Kaspersky official blog
MongoDB | Blog
MongoDB | Blog
L
LINUX DO - 热门话题
Simon Willison's Weblog
Simon Willison's Weblog
云风的 BLOG
云风的 BLOG
S
Securelist
AWS News Blog
AWS News Blog
F
Fortinet All Blogs
T
Threat Research - Cisco Blogs
Stack Overflow Blog
Stack Overflow Blog
Scott Helme
Scott Helme
Help Net Security
Help Net Security
Y
Y Combinator Blog
宝玉的分享
宝玉的分享
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
T
Tenable Blog

Recent Commits to web-share:main

Merge pull request #289 from siusin/main · w3c/web-share@e871726 update the editor list · w3c/web-share@a296150 Editorial: fix typo (#283) · w3c/web-share@bc1468c Merge pull request #277 from w3c/WebShare-rec · w3c/web-share@0b15b86 chore: prepare for REC · w3c/web-share@aa811f9 chore: fix wrong pass rate · w3c/web-share@e441b96 chore: remove explanation of failures col · w3c/web-share@f511e0b chore: move disabled-by-permissions-policy.https.sub.html to excluded… · w3c/web-share@6681897 chore: tidy · w3c/web-share@0eaf73c Make Permissions-Policy HTTP header OPTIONAL (#275) · w3c/web-share@d0ea0fe Editorial: note canShare is not future compatible (#273) · w3c/web-share@7f78426 Editorial: add static implementation report (#274) · w3c/web-share@0a7a70c Editorial: fix IDL linking · w3c/web-share@35980bb Editorial: explain Changelog · w3c/web-share@c4b6677 chore: clean up changelog · w3c/web-share@aa0cb86 chore: tidy · w3c/web-share@8a04511 Editorial: improve a11y guidelines for share sheet (#270) · w3c/web-share@49300de Editorial: thank wide review groups in acknowledgements (#269) · w3c/web-share@783e54b Editorial: switch to 'terminate this algorithm' (#268) · w3c/web-share@5c9977c
Editorial: fix typos and markup · w3c/web-share@3faf529
marcoscacere · 2025-10-17 · via Recent Commits to web-share:main

@@ -70,7 +70,7 @@ <h3>

7070

The ability to share content is often dependent on the underlying

7171

operating system providing a "share" capability and also on OS UI

7272

conventions. For example, some OSs present a "share sheet", while

73-

others rely on an pop-up menu. Due to these aforementioned

73+

others rely on a pop-up menu. Due to these aforementioned

7474

dependencies, there is ongoing work by implementers to bring the Web

7575

Share API to all OSs. This ongoing effort is reflected as failures in

7676

the <a href="https://wpt.fyi/web-share">implementation report</a>,

182182

}

183183

</pre>

184184

<p>

185-

Alternatively, you can adjust application's UI to not show UI

185+

Alternatively, you can adjust the application's UI to not show UI

186186

components for unsupported members.

187187

</p>

188188

<pre class="js example" title="Filtering out unsupported members">

@@ -207,7 +207,7 @@ <h3>

207207

first-party contexts.

208208

</p>

209209

<p>

210-

Third-party can be allowed to use this API via an [^iframe^]'s

210+

Third-party contexts can be allowed to use this API via an [^iframe^]'s

211211

[^iframe/allow^] attribute:

212212

</p>

213213

<aside class="example" title=

@@ -224,7 +224,7 @@ <h3>

224224

specifying an HTTP response header:

225225

</p>

226226

<aside class="example" title=

227-

"Disabling Web Share over API HTTP using Permissions Policy">

227+

"Disabling Web Share API over HTTP using Permissions Policy">

228228

<pre class="http">

229229

Permissions-Policy: web-share=()

230230

</pre>

@@ -273,12 +273,12 @@ <h4>

273273

</h4>

274274

<p>

275275

When the {{Navigator/share()}} method is called with argument

276-

|data:ShareData|, run the listed steps listed below while taking

276+

|data:ShareData|, run the steps listed below while taking

277277

into consideration the following security implications.

278278

</p>

279279

<p>

280280

Web Share enables data to be sent from websites to a [=share

281-

target=], which can be a native applications. While this ability is

281+

target=], which can be native applications. While this ability is

282282

not unique to Web Share, it does come with a number of potential

283283

security risks that can vary in severity (depending on the

284284

underlying platform).

396396

</li>

397397

</ol>

398398

</li>

399-

<li>Present the user with a choice of one more <a>share

399+

<li>Present the user with a choice of one or more <a>share

400400

targets</a> and the ability abort the operation. This UI

401401

surface serves as a security confirmation, ensuring that

402402

websites cannot silently send data to native applications. The

@@ -411,7 +411,7 @@ <h4>

411411

|global| to:

412412

<ol>

413413

<li>[=Reject=] [=this=].{{Navigator/[[sharePromise]]}} with

414-

an {{"AbortError"}} {{DOMException}},

414+

an {{"AbortError"}} {{DOMException}}.

415415

</li>

416416

<li>Set [=this=].{{Navigator/[[sharePromise]]}} to `null`.

417417

</li>

464464

</ol>

465465

</section>

466466

<section>

467-

<h3>

467+

<h4>

468468

`canShare(data)` method

469-

</h3>

469+

</h4>

470470

<p>

471471

When the <dfn>canShare()</dfn> method is called with argument

472472

{{ShareData}} |data:ShareData|, run the following steps:

535535

</p>

536536

<ol class="algorithm">

537537

<li>If none of |data|'s members {{ShareData/title}},

538-

{{ShareData/text}}, or {{ShareData/url}} or {{ShareData/files}} are

538+

{{ShareData/text}}, {{ShareData/url}}, or {{ShareData/files}} are

539539

present, return false.

540540

</li>

541541

<li>Let |titleTextOrUrl:boolean| be true if any of

728728

being used in third-party context, at the time of publication there

729729

are interoperability issues with relying on the

730730

[[[Permissions-Policy]]] to enable the API in third-party contexts.

731-

In particular, although the[^iframe/allow^] attribute is widely

731+

In particular, although the [^iframe/allow^] attribute is widely

732732

supported, the updated syntax for the [^iframe/allow^] attribute is

733733

not. Similarly, the `Permissions-Policy:` HTTP header is not yet

734734

widely supported. Developers are advised to check the implementation