-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a separate Security and Privacy Questionnaire #35
Merged
Merged
Changes from all commits
Commits
File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,115 @@ | ||
| # Autoplay Policy Detection - Security and Privacy Questionnaire | ||
|
|
||
| This document answers the [W3C Security and Privacy | ||
| Questionnaire](https://w3ctag.github.io/security-questionnaire/) for the | ||
| Autoplay Policy Detection specification. | ||
|
|
||
| Last Update: 2022-09-12 | ||
|
|
||
| **What information might this feature expose to Web sites or other parties, and | ||
| for what purposes is that exposure necessary?** | ||
|
|
||
| This API exposes information to allow websites detect if autoplaying media is | ||
| allowed, which help them make actions, such as selecting alternate content or | ||
| improving the user experience while media is not allowed to autoplay. | ||
|
|
||
| Example query: | ||
| Is this media element allowed to autoplay? | ||
|
|
||
| Example answer: | ||
| The queried media element is not allowed to autoplay. | ||
|
|
||
| If the user agent does not allow any autoplay media, then websites could stop | ||
| loading media resources and related tasks to save the bandwidth and CPU usage | ||
| for users. | ||
|
|
||
| **Do features in your specification expose the minimum amount of information | ||
| necessary to enable their intended uses?** | ||
|
|
||
| Yes. The API will return different results, such as `allowed`, `allowed-muted` | ||
| and `disallowed`, to answer websites' question. | ||
|
|
||
| **How do the features in your specification deal with personal information, | ||
| personally-identifiable information (PII), or information derived from them?** | ||
|
|
||
| This specification does not deal with PII. | ||
|
|
||
| **How do the features in your specification deal with sensitive information?** | ||
|
|
||
| This specification does not deal with sensitive information. | ||
|
|
||
| **Do the features in your specification introduce new state for an origin that | ||
| persists across browsing sessions?** | ||
|
|
||
| No. | ||
|
|
||
| **Do the features in your specification expose information about the underlying | ||
| platform to origins?** | ||
|
|
||
| No. The information about whether autoplay is not allowed is not platform | ||
| specific. The result doesn't describe anything which can be used to deduce the | ||
| underlying platform. | ||
|
|
||
| **Do features in this specification allow an origin access to sensors on a | ||
| user’s device?** | ||
|
|
||
| No. | ||
|
|
||
| **What data do the features in this specification expose to an origin? Please | ||
| also document what data is identical to data exposed by other features, in the | ||
| same or different contexts.** | ||
|
|
||
| 3 enums, "allowed", "allowed-muted" and "disallowed", which are used to answer | ||
| the question for knowing the status for autoplay. | ||
|
|
||
| There is no other API can directly answer the status of whether autoplay is | ||
| allowed. However, for media element, there is a API could answer the question | ||
| indirectly. But for the audio context, there is no way to know the status. | ||
|
|
||
| Eg. `HTMLMediaElement.play()`, will return a promise. If autoplay is not | ||
| allowed, the play promise will be rejected, and the element will receive an | ||
| unsupported error. | ||
|
|
||
| **Do features in this specification enable new script execution/loading | ||
| mechanisms?** | ||
|
|
||
| No. | ||
|
|
||
| **Do features in this specification allow an origin to access other devices?** | ||
|
|
||
| No. | ||
|
|
||
| **Do features in this specification allow an origin some measure of control over | ||
| a user agent’s native UI?** | ||
|
|
||
| No. | ||
|
|
||
| **What temporary identifiers do the features in this specification create or | ||
| expose to the web?** | ||
|
|
||
| No. | ||
|
|
||
| **How does this specification distinguish between behavior in first-party and | ||
| third-party contexts?** | ||
|
|
||
| It does not distinguish. | ||
|
|
||
| **How do the features in this specification work in the context of a browser’s | ||
| Private Browsing or Incognito mode?** | ||
|
|
||
| This specification does not treat Private Browsing and Incognito mode in a | ||
| special way. They should all work the same as normal browsing mode. | ||
|
|
||
| Unless the user agent implements something specially which would return | ||
| different answers for the same origin under the same situation. | ||
|
|
||
| **Does this specification have both "Security Considerations" and "Privacy | ||
| Considerations" sections?** | ||
|
|
||
| Yes, this specification has a [Security and Privacy Considerations](https://w3c.github.io/autoplay/#security-and-privacy) | ||
| section already. | ||
|
|
||
| **Do features in your specification enable downgrading default security | ||
| characteristics?** | ||
|
|
||
| No. | ||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
A minor note , we have #29 about changing these into separate sections. I'd recommend we do that before requesting review
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I suggest merging this PR, then update this document as part of #29.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@chrisn Just want to confirm with you if my understanding is correct, so what you suggest is (1) merging this PR (2) split current
Security and Privacy Considerationsinto two independent sections? (So that we will have a separate questionnaire and two sections on the spec?) Thank you!There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, the end result is two separate sections in the spec, but just one questionnaire document.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I have updated #30 to track the status of the FPWD horizontal reviews.