


























@@ -824,6 +824,7 @@ partial interface HTMLIFrameElement {
824824 readonly attribute long? columnNumber;
825825 readonly attribute DOMString disposition;
826826 readonly attribute DOMString? allowAttribute;
827+ readonly attribute DOMString? srcAttribute;
827828 };
828829</pre>
829830@@ -862,6 +863,11 @@ partial interface HTMLIFrameElement {
862863<{iframe}> element, the value of the <{iframe/allow}> attribute of that
863864 element, or omitted otherwise.
864865866+ - <dfn for="PermissionsPolicyViolationReportBody">allowAttribute</dfn>: For
867+ reports of potential violations, which can be attributed to a specific
868+<{iframe}> element, the value of the <{iframe/src}> attribute of that
869+ element, or omitted otherwise.
870+865871<section>
866872<h3 id="permissions-policy-report-only-http-header-field">\``Permissions-Policy-Report-Only`\` HTTP Header Field</h3>
867873<p>The \`<dfn export http-header
@@ -1194,8 +1200,9 @@ partial interface HTMLIFrameElement {
11941200 ## <dfn abstract-op id="check-potential-violation-in-container">Check potential violation of permissions policy in container</dfn> ## {#algo-check-potential-violation-in-container}
1195120111961202<div class="algorithm" data-algorithm="check-potential-violation-in-container">
1197- Given a <a>navigable container</a> (|container|), this algorithm sends potential
1198- violation reports.
1203+ Given a <a>navigable container</a> (|container|), a string-or-null
1204+ (|allowAttribute|), and a string-or-null (|srcAttribute|), this algorithm
1205+ sends potential violation reports.
11991206 1. Let |document| be |container|'s <a>node document</a>.
12001207 2. Let |settings| be |document|'s <a>environment settings
12011208 object</a>.
@@ -1209,7 +1216,8 @@ partial interface HTMLIFrameElement {
12091216 |document|'s [=Document/permissions policy=].
12101217 2. Call <a abstract-op>Generate report for potential violation
12111218 of permissions policy on settings</a> given |feature|,
1212- |settings|, "<code>Enforce</code>", and |endpoint|.
1219+ |settings|, "<code>Enforce</code>", |endpoint|, |allowAttribute|,
1220+ and |srcAttribute|.
12131221 2. Else, if the result of running <a abstract-op>Define an inherited
12141222 policy for feature in container at origin</a> on |feature|,
12151223 |container|, |container|'s <a>declared origin</a> and True is
@@ -1220,8 +1228,8 @@ partial interface HTMLIFrameElement {
12201228 permissions policy=].
12211229 2. Call <a abstract-op>Generate report for potential violation
12221230 of permissions policy on settings</a> given |feature|,
1223- |settings|, "<code>Report</code>", and |report-only
1224-endpoint|.
1231+ |settings|, "<code>Report</code>", |report-only endpoint|,
1232+|allowAttribute|, and |srcAttribute|.
1225123312261234</div>
12271235</section>
@@ -1264,9 +1272,9 @@ partial interface HTMLIFrameElement {
1264127212651273<div class="algorithm" data-algorithm="report-potential-permissions-policy-violation">
12661274 Given a [=policy-controlled feature|feature=] (|feature|), an <a>environment settings object</a>
1267- (|settings|), a string (|disposition|), a string-or-null (|endpoint|), and a string-or-null
1268- (|allowAttribute|), this algorithm generates a <a>report</a> about the <a>violation</a> of the
1269- policy for |feature|.
1275+ (|settings|), a string (|disposition|), a string-or-null (|endpoint|), a string-or-null
1276+ (|allowAttribute|), and a string-or-null (|srcAttribute|), this algorithm generates a
1277+<a>report</a> about the <a>violation</a> of the policy for |feature|.
1270127812711279 1. Let |body| be a new {{PermissionsPolicyViolationReportBody}}, initialized
12721280 as follows:
@@ -1283,6 +1291,8 @@ partial interface HTMLIFrameElement {
12831291 :: |disposition|
12841292 : [=PermissionsPolicyViolationReportBody/allowAttribute=]
12851293 :: |allowAttribute|
1294+ : [=PermissionsPolicyViolationReportBody/allowAttribute=]
1295+ :: |srcAttribute|
1286129612871297 1. If the user agent is currently executing script, and can extract the
12881298 source file's URL, line number, and column number from |settings|, then
@@ -1344,11 +1354,13 @@ partial interface HTMLIFrameElement {
13441354 And in the same section, in step 10, set the new {{Document}}'s
13451355[=Document/report-only permissions policy=] to |reportOnlyPermissionsPolicy|.
134613561347- And in the same section, in step 19 before the return, insert the following step:
1357+ In <a
1358+ href="https://html.spec.whatwg.org/multipage/iframe-embed-object.html#iframe-load-event-steps">iframe
1359+ load event steps</a>, after step 6, insert the following step:
134813601349-19. If navigationParams's navigable's container is not null, call <a
1350- abstract-op>Check potential violation of permissions policy in
1351- container</a> given navigationParams's navigable's container.
1361+7. Call <a abstract-op>Check potential violation of permissions policy in
1362+ container</a> given |element|, |element|'s allow attribute, and
1363+|element|'s src attribute.
13521364</section>
13531365</section>
13541366此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。