Join GitHub today
GitHub is home to over 28 million developers working together to host and review code, manage projects, and build software together.Sign up
"allowed to use" active document, browsing context container... #2143
We don't check if document is the active document in "allowed to use".
https://html.spec.whatwg.org/#allowed-to-use currently says
https://html.spec.whatwg.org/#creator-browsing-context for iframe is the same as:
So... Shadow DOM should be considered here also. It is not clear to me yet if that is the only difference between parent browsing context and walking up the browsing context container.
Here's the thing. The phrase "allowed to use" appears in HTML in three places: the definitions of the
Looking at Gecko's implementation, we do have
But generally speaking, this algorithm as written means that whether the thing is allowed or not can change during the lifetime of the document, due to attribute changes on arbitrary ancestor
It's possible that for