-
Notifications
You must be signed in to change notification settings - Fork 406
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Questions about the RWS usage #315
Comments
Hi @daiyanze,
Yes, the .well-known files should be served from the sites that are declared in the If you'd like to run the CI on your submission locally before making it public, you can follow the instructions here.
The maintainers merge all acceptable contributions once weekly, on Tuesdays. In order to be merged in a timely fashion, a PR must pass the automated CI, must allow edits from maintainers (so that we can resolve merge conflicts), and the author must have signed the CLA. The PRs you've seen which have taken more than 1 week to merge are either due to holidays, or because there are unresolved problems with the PR content.
It takes some time. Chrome consumes the list regularly and ships it to users as an updateable component. Users' machines periodically check for updates when they're running Chrome and are connected to the internet.
There are differences between those setups, but depending on how your sites work, you might not see any difference.
This section of the submission guidelines was inaccurate for a while; I recently fixed it, so it is correct now and should match the behavior you see in Chrome. Please let me know if you find otherwise. |
Hi @cfredric , Question about the user gesture,
I'd like to know about the
That commit solved some ambiguous points. Appreciated that! However, on our side, the 3rd party domain is not embedded into the primary domain. From primary domain, it's just sending requests to 3rd party domain. In my case, I think the condition of 3rd party being blocked is as below:
If the |
Yes, due to a an implementation detail in Chrome. We're open to changing this to match non-RWS Storage Access grants (which persist after restarts), if this is particularly painful for you.
No, it is distributed via Component Updater, and doesn't require a new build of Chrome. A new RWS update doesn't take effect until the user restarts Chrome, in order to avoid having a disruptive user experience (since in theory, Chrome may have to clear some cookies and site data as a result of the update).
I see. In that case you don't have an iframe so
This makes sense to me. You've declared test.com as a service site, and service sites are not allowed to call
Correct; primary and associated sites can call |
@cfredric |
Hi there!
Hope someone could answer my questions about the RWS usage.
1. Is the .well-known folder required to be hosted on the "primary" domain (e.g. mydomain.com)? If so, do subdomains (e.g. service.mydomain.com & payment.mydomain.com) also need to host this folder?
2. Suppose we need to update the RWS config and opened up a PR which passed the CI automated-tests. How long does it take to get approvals?
PS: I've seen quite a few PRs being merged in more than 5 days after its opening. Hope there's somewhat method to accelerate the review process under urgent situation.
3. If the PR gets merged, does Chrome reflect the changes immediately or it'll take some time to?
4. Upon my local testing, I've found that the following settings result in the same behavior.
test.com
is the client site.mydomain.com
provides a 3rd party cookie.test.com
needs to send request tomydomain.com
with that 3rd party cookie. In this case, I suppose we'll have to utilize the APIdocument.requestStorageAccessFor
to grant access after user properly interacted with the page.The doc says if I put "mydomain.com" into "serviceSites", when I request 3rd party storage access I'll get blocked. However, it's on the contrary. Wonder why this happened.
The text was updated successfully, but these errors were encountered: