From 4bb8e8319aa0aadd1b1ac9ac8a3f234982c8f172 Mon Sep 17 00:00:00 2001
From: Ade Bateman <bateman@acm.org>
Date: Wed, 26 Apr 2017 18:30:13 -0700
Subject: [PATCH 1/2] Reject with SecurityError if the UA rejects the call to
 show().

Fixes #486.
---
 index.html | 23 ++++++++++++++++++++---
 1 file changed, 20 insertions(+), 3 deletions(-)

diff --git a/index.html b/index.html
index f7f88529..4d8565ff 100644
--- a/index.html
+++ b/index.html
@@ -623,6 +623,24 @@ <h2>
           <li>Let <var>request</var> be the <a>PaymentRequest</a> object on
           which the method is called.
           </li>
+          <li>
+            <p>
+              If the <a>user agent</a> rejects the call to <a>show()</a> to
+              protect the user, then return a promise rejected with a
+              "<a>SecurityError</a>" <a>DOMException</a>. For example, this
+              might occur if the <a>user agent</a> requires a user gesture to
+              allow a page to call <a>show()</a>, or the <a>user agent</a> may
+              limit the rate at which a page can call <a>show()</a>, as
+              described in the the <a href="#privacy">privacy
+              considerations</a> section.
+            </p>
+            <p class="note">
+              Implementations are expected to experiment in this area.
+              Developers using the payment request API should investigate and
+              anticipate such experiments and understand under what
+              circumstances a <a>SecurityError</a> might occur.
+            </p>
+          </li>
           <li>If <var>request</var>.<a>[[\state]]</a> is not "<a>created</a>"
           then return a promise rejected with an "<a>InvalidStateError</a>" <a>
             DOMException</a>.
@@ -798,8 +816,7 @@ <h2>
             DOMException</a>.
           </li>
           <li>Optionally, at the <a>user agent</a>'s discretion, return a
-          promise rejected with a "<a>NotAllowedError</a>"
-          <a>DOMException</a>.
+          promise rejected with a "<a>NotAllowedError</a>" <a>DOMException</a>.
             <p class="note" data-link-for="PaymentRequest">
               This allows user agents to apply heuristics to detect and prevent
               abuse of the <a>canMakePayment()</a> method for fingerprinting
@@ -2677,7 +2694,7 @@ <h2>
         </p>
       </section>
     </section>
-    <section class='informative'>
+    <section class='informative' id="privacy">
       <h2>
         Privacy Considerations
       </h2>

From cd50c277906159d8b9095d4c22ddfce8e1e4ff0c Mon Sep 17 00:00:00 2001
From: Domenic Denicola <d@domenic.me>
Date: Thu, 27 Apr 2017 14:38:06 -0400
Subject: [PATCH 2/2] Editorial tweaks

---
 index.html | 24 ++++++++++++++----------
 1 file changed, 14 insertions(+), 10 deletions(-)

diff --git a/index.html b/index.html
index 4d8565ff..70101844 100644
--- a/index.html
+++ b/index.html
@@ -625,20 +625,20 @@ <h2>
           </li>
           <li>
             <p>
-              If the <a>user agent</a> rejects the call to <a>show()</a> to
-              protect the user, then return a promise rejected with a
-              "<a>SecurityError</a>" <a>DOMException</a>. For example, this
-              might occur if the <a>user agent</a> requires a user gesture to
-              allow a page to call <a>show()</a>, or the <a>user agent</a> may
-              limit the rate at which a page can call <a>show()</a>, as
-              described in the the <a href="#privacy">privacy
-              considerations</a> section.
+              Optionally, if the <a>user agent</a> wishes to disallow the call
+              to <a>show()</a> to protect the user, then return a promise
+              rejected with a "<a>SecurityError</a>" <a>DOMException</a>. For
+              example, the <a>user agent</a> may require the call to be
+              <a>triggered by user activation</a>, or may limit the rate at
+              which a page can call <a>show()</a>, as described in the the
+              <a href="#privacy">privacy considerations</a> section.
             </p>
-            <p class="note">
+            <p>
               Implementations are expected to experiment in this area.
               Developers using the payment request API should investigate and
               anticipate such experiments and understand under what
-              circumstances a <a>SecurityError</a> might occur.
+              circumstances a "<a>SecurityError</a>" <a>DOMException</a> might
+              occur.
             </p>
           </li>
           <li>If <var>request</var>.<a>[[\state]]</a> is not "<a>created</a>"
@@ -2771,6 +2771,10 @@ <h2>
             <li>
               <dfn data-cite="!HTML#allowed-to-use">allowed to use</dfn>
             </li>
+            <li>
+              <dfn data-cite="!HTML#triggered-by-user-activation">triggered by
+              user activation</dfn>
+            </li>
             <li>
               <dfn data-cite="!HTML#in-parallel">in parallel</dfn>
             </li>