| 10:11 | <sideshowbarker> | What’s the current best-practice way to programmatically detect if a document is in a frame? |
| 12:24 | <Noam Rosenthal> | What’s the current best-practice way to programmatically detect if a document is in a frame? |
| 12:52 | <Noam Rosenthal> | (I usually do something like window.parent !== window.self but frameElement feels more like a best practice) |
| 14:23 | <sideshowbarker> | Noam Rosenthal: thanks much |
| 15:02 | <Domenic> | anyone know if we ever defined what headers should not be included in subsequent requests after a cross-origin HTTP redirect? |
| 16:51 | <smaug> | jgraham: in wpt, is there a way to test behavior when alert() pops up? |
| 16:51 | <smaug> | or basically, is there a way to close it? |
| 17:31 | <Noam Rosenthal> | smaug: seems like WebDriver has support for this, but it's not patched through to testdriver and not used in tests. Shouldn't be difficult to accomplish IMO. But maybe jgraham has more context (or others at #wpt:matrix.org) |
| 19:07 | <Ian Hickson> | Not sure how I missed this yesterday but a coworker pointed me to https://fetch.spec.whatwg.org/#http-redirect-fetch step 11. So basically remove https://fetch.spec.whatwg.org/#request-body-header-name |
| 19:08 | <Domenic> | Right so removing credentials is conditional on your credentials mode being "same-origin", let's find that... |
| 19:09 | <Domenic> | Those two are only conditionally included in step 20 of https://fetch.spec.whatwg.org/#concept-http-network-or-cache-fetch based on several pieces of input |
| 19:46 | <jgraham> | smaug, Noam Rosenthal I think the way that the wpt harness uses WebDriver makes it quite hard to test alert behaviour; that probabaly requires WebDriver-BiDi |
| 20:01 | <Ian Hickson> | Those two are only conditionally included in step 20 of https://fetch.spec.whatwg.org/#concept-http-network-or-cache-fetch based on several pieces of input like, https://curl.se/docs/CVE-2018-1000007.html removes Authorization during a redirect, but is that all we should remove? |
| 21:20 | <Domenic> | I mean the intention isn't just to give people answers to "what HTTP headers to remove during a redirect", it's to give "if you want to build a browser-compatible fetch algorithm here is step-by-step how to do it" |
| 21:21 | <Domenic> | And so in particular part of that is only adding in Authorization or Set-Cookie under certain conditions |
| 21:21 | <Domenic> | Whether that particular algorithm is applicable to non-browser software, yeah, unclear. |
| 21:32 | <Arya Mulya> | Hii guys hello |
| 23:13 | <sideshowbarker> | Odd https://stackoverflow.com/questions/70963287/youtube-is-blocking-javascript-execution-for-around-10-seconds |
| 23:28 | <Luca Casonato> | Does anyone here know if Joshua Bell (IndexedDB editor) is on matrix? I can also email, but I don't know what is @google.com/@chromium.com address is. If anyone knows his email, would be great if you could DM it to me :-) |
| 23:31 | <Domenic> | Does anyone here know if Joshua Bell (IndexedDB editor) is on matrix? I can also email, but I don't know what is @google.com/@chromium.com address is. If anyone knows his email, would be great if you could DM it to me :-) |
| 23:49 | <Luca Casonato> | If you hover over his name in https://w3c.github.io/IndexedDB/ the email is there :) |