惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

C
Check Point Blog
AI
AI
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
U
Unit 42
Vercel News
Vercel News
Stack Overflow Blog
Stack Overflow Blog
P
Proofpoint News Feed
Microsoft Security Blog
Microsoft Security Blog
The GitHub Blog
The GitHub Blog
WordPress大学
WordPress大学
Martin Fowler
Martin Fowler
博客园 - 【当耐特】
B
Blog
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
Apple Machine Learning Research
Apple Machine Learning Research
博客园_首页
F
Full Disclosure
Google DeepMind News
Google DeepMind News
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
H
Help Net Security
Recorded Future
Recorded Future
N
News and Events Feed by Topic
雷峰网
雷峰网
V
Vulnerabilities – Threatpost
Schneier on Security
Schneier on Security
aimingoo的专栏
aimingoo的专栏
S
Schneier on Security
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
O
OpenAI News
Project Zero
Project Zero
罗磊的独立博客
G
GRAHAM CLULEY
腾讯CDC
P
Privacy International News Feed
V
V2EX
Application and Cybersecurity Blog
Application and Cybersecurity Blog
Hugging Face - Blog
Hugging Face - Blog
爱范儿
爱范儿
H
Heimdal Security Blog
L
LINUX DO - 热门话题
Forbes - Security
Forbes - Security
美团技术团队
MongoDB | Blog
MongoDB | Blog
Security Latest
Security Latest
M
MIT News - Artificial intelligence
T
Tor Project blog
Cisco Talos Blog
Cisco Talos Blog
宝玉的分享
宝玉的分享
T
Threat Research - Cisco Blogs
TaoSecurity Blog
TaoSecurity Blog

Recent Commits to web-share:main

Merge pull request #289 from siusin/main · w3c/web-share@e871726 update the editor list · w3c/web-share@a296150 Editorial: fix typo (#283) · w3c/web-share@bc1468c Merge pull request #277 from w3c/WebShare-rec · w3c/web-share@0b15b86 chore: prepare for REC · w3c/web-share@aa811f9 chore: fix wrong pass rate · w3c/web-share@e441b96 chore: remove explanation of failures col · w3c/web-share@f511e0b chore: move disabled-by-permissions-policy.https.sub.html to excluded… · w3c/web-share@6681897 chore: tidy · w3c/web-share@0eaf73c Make Permissions-Policy HTTP header OPTIONAL (#275) · w3c/web-share@d0ea0fe Editorial: note canShare is not future compatible (#273) · w3c/web-share@7f78426 Editorial: add static implementation report (#274) · w3c/web-share@0a7a70c Editorial: fix IDL linking · w3c/web-share@35980bb Editorial: explain Changelog · w3c/web-share@c4b6677 chore: clean up changelog · w3c/web-share@aa0cb86 chore: tidy · w3c/web-share@8a04511 Editorial: improve a11y guidelines for share sheet (#270) · w3c/web-share@49300de Editorial: thank wide review groups in acknowledgements (#269) · w3c/web-share@783e54b Editorial: switch to 'terminate this algorithm' (#268) · w3c/web-share@5c9977c
Editorial: fix typos and markup · w3c/web-share@3faf529
marcoscacere · 2025-10-17 · via Recent Commits to web-share:main

@@ -70,7 +70,7 @@ <h3>

7070

The ability to share content is often dependent on the underlying

7171

operating system providing a "share" capability and also on OS UI

7272

conventions. For example, some OSs present a "share sheet", while

73-

others rely on an pop-up menu. Due to these aforementioned

73+

others rely on a pop-up menu. Due to these aforementioned

7474

dependencies, there is ongoing work by implementers to bring the Web

7575

Share API to all OSs. This ongoing effort is reflected as failures in

7676

the <a href="https://wpt.fyi/web-share">implementation report</a>,

182182

}

183183

</pre>

184184

<p>

185-

Alternatively, you can adjust application's UI to not show UI

185+

Alternatively, you can adjust the application's UI to not show UI

186186

components for unsupported members.

187187

</p>

188188

<pre class="js example" title="Filtering out unsupported members">

@@ -207,7 +207,7 @@ <h3>

207207

first-party contexts.

208208

</p>

209209

<p>

210-

Third-party can be allowed to use this API via an [^iframe^]'s

210+

Third-party contexts can be allowed to use this API via an [^iframe^]'s

211211

[^iframe/allow^] attribute:

212212

</p>

213213

<aside class="example" title=

@@ -224,7 +224,7 @@ <h3>

224224

specifying an HTTP response header:

225225

</p>

226226

<aside class="example" title=

227-

"Disabling Web Share over API HTTP using Permissions Policy">

227+

"Disabling Web Share API over HTTP using Permissions Policy">

228228

<pre class="http">

229229

Permissions-Policy: web-share=()

230230

</pre>

@@ -273,12 +273,12 @@ <h4>

273273

</h4>

274274

<p>

275275

When the {{Navigator/share()}} method is called with argument

276-

|data:ShareData|, run the listed steps listed below while taking

276+

|data:ShareData|, run the steps listed below while taking

277277

into consideration the following security implications.

278278

</p>

279279

<p>

280280

Web Share enables data to be sent from websites to a [=share

281-

target=], which can be a native applications. While this ability is

281+

target=], which can be native applications. While this ability is

282282

not unique to Web Share, it does come with a number of potential

283283

security risks that can vary in severity (depending on the

284284

underlying platform).

396396

</li>

397397

</ol>

398398

</li>

399-

<li>Present the user with a choice of one more <a>share

399+

<li>Present the user with a choice of one or more <a>share

400400

targets</a> and the ability abort the operation. This UI

401401

surface serves as a security confirmation, ensuring that

402402

websites cannot silently send data to native applications. The

@@ -411,7 +411,7 @@ <h4>

411411

|global| to:

412412

<ol>

413413

<li>[=Reject=] [=this=].{{Navigator/[[sharePromise]]}} with

414-

an {{"AbortError"}} {{DOMException}},

414+

an {{"AbortError"}} {{DOMException}}.

415415

</li>

416416

<li>Set [=this=].{{Navigator/[[sharePromise]]}} to `null`.

417417

</li>

464464

</ol>

465465

</section>

466466

<section>

467-

<h3>

467+

<h4>

468468

`canShare(data)` method

469-

</h3>

469+

</h4>

470470

<p>

471471

When the <dfn>canShare()</dfn> method is called with argument

472472

{{ShareData}} |data:ShareData|, run the following steps:

535535

</p>

536536

<ol class="algorithm">

537537

<li>If none of |data|'s members {{ShareData/title}},

538-

{{ShareData/text}}, or {{ShareData/url}} or {{ShareData/files}} are

538+

{{ShareData/text}}, {{ShareData/url}}, or {{ShareData/files}} are

539539

present, return false.

540540

</li>

541541

<li>Let |titleTextOrUrl:boolean| be true if any of

728728

being used in third-party context, at the time of publication there

729729

are interoperability issues with relying on the

730730

[[[Permissions-Policy]]] to enable the API in third-party contexts.

731-

In particular, although the[^iframe/allow^] attribute is widely

731+

In particular, although the [^iframe/allow^] attribute is widely

732732

supported, the updated syntax for the [^iframe/allow^] attribute is

733733

not. Similarly, the `Permissions-Policy:` HTTP header is not yet

734734

widely supported. Developers are advised to check the implementation