Improve <style> and <script> processing and conformance #3024
Conversation
* De-genericizes <style> and <link rel="stylesheet"> to only deal with CSS. Fixes #2995. * Makes type="" on <style> "obsolete but conforming", since it is always redundant. * Makes type="(a JS MIME type)" on <script> obsolete but conforming as well. Previously we had a "should" requirement but had not recorded it in the centralized obsolete-but-conforming section that collects such requirements. * Makes <style> operate on child text content. Fixes #2996. * Replaces the conformance requirement (noted in the source as "temporary") prohibiting unmatched comment-like syntax inside <style> with a conformance requirement to be valid CSS. * Adds pointers to #2997. * Makes it clearer that parameters are not allowed in the content type value for script or style. Fixes #3022.
source
Outdated
| <li> | ||
| <p>If <var>element</var>'s <code data-x="attr-style-type">type</code> attribute is present, and | ||
| its value is not an <span>ASCII case-insensitive</span> match for the string "<code | ||
| data-x="">text/css</code>", return.</p> |
There was a problem hiding this comment.
The empty string works too in Chrome, Firefox, and Safari. (Didn't test Edge.)
source
Outdated
| production. Classic scripts are affected by the <code | ||
| data-x="attr-script-charset">charset</code>, <code data-x="attr-script-async">async</code>, and | ||
| <code data-x="attr-script-defer">defer</code> attributes. Authors should omit the attribute, | ||
| instead of redundantly giving a <span>JavaScript MIME type</span>.</p></li> |
There was a problem hiding this comment.
Empty string works for <script> too in all browsers.
There was a problem hiding this comment.
That seems like a weird detail to include in this intro section, but maybe we can work it in.
source
Outdated
| not be recognized as referencing any of the scripting languages listed above.</p> | ||
| <p class="note">For example, "<code data-x="">text/javascript; charset=utf-8</code>" will not be | ||
| recognized as a <span>JavaScript MIME type</span>, and scripts marked as such will not be | ||
| evaluated.</p> |
There was a problem hiding this comment.
This doesn't work as a general statement since this will work for module scripts if specified in Content-Type as such.
source
Outdated
|
|
||
| <li><p>The presence of a <code data-x="attr-style-type">type</code> attribute on a | ||
| <code>style</code> element if its value is an <span>ASCII case-insensitive</span> match for the | ||
| string "<code>text/css</code>".</p></li> |
There was a problem hiding this comment.
Shouldn't this just be the presence of the attribute?
There was a problem hiding this comment.
No; the presence of the attribute with another value is an error, not a warning. This section is specifically about warnings. Compare to the language="" bullet above this.
|
I also noticed you didn't update the "valid MIME type" reference for script. Including in the Attributes index. That now needs to be "valid MIME type with no parameters" assuming that's the term we're going to use for this going forward. I'm not sure what to do about the classification of JavaScript MIME type as a MIME type since MIME type also still includes parameters. Do we need to introduce a new "MIME type with no parameters" term that specifically means a subset of the MIME type production? |
|
(Although that wouldn't work for the classification of JavaScript MIME type I suppose since when it's used with |
Can you point to all the locations? I thought script did not reference valid MIME type anymore as of your recent PR.
I don't think so. I think it's fine for "MIME type" to be used, especially in conformance requirements, as a more vague term, with the processing model or specific definitions like "JavaScript MIME type" giving the exact behavior. Can you point to a particular location where we give bad authoring advice by using the word "MIME type"? I couldn't see any, since we only reference "JavaScript MIME type" or "text/css". |
|
Sure:
And also in the Attributes index for the
(I only separated it out to add "module", but I didn't want to fix "valid MIME type" since that would also require changes in the above-quoted bits.) |
|
OK. But that seems fine. They can use one with or without parameters; both work for the purposes of avoiding collisions. |
|
Assigned myself not to claim exclusive review ownership/approval-from-me-required on this but instead just so in shows up in the right place in my gitflow so that I don’t forget. Will try to review it this weekend |
|
@domenic it doesn't seem fine for the type attribute, since it suggests |
|
Pushed most changes. @annevk, I'm still confused what you are proposing here to replace the text you quoted. I think it's pretty unambiguous as-is. Perhaps you can help by pushing a commit with your suggestion. |
source
Outdated
| <li> | ||
| <p>If <var>element</var>'s <code data-x="attr-style-type">type</code> attribute is present, and | ||
| its value is neither the empty string nor an <span>ASCII case-insensitive</span> match for the | ||
| string "<code data-x="">text/css</code>", return.</p> |
| @@ -57363,8 +57337,9 @@ interface <dfn>HTMLScriptElement</dfn> : <span>HTMLElement</span> { | |||
| the type of script represented:</p> | |||
|
|
|||
| <ul> | |||
| <li><p>Omitting the attribute, or setting it to a <span>JavaScript MIME type</span>, means that | |||
| the script is a <span>classic script</span>, to be interpreted according to the JavaScript <i | |||
| <li><p>Omitting the attribute, setting it to the empty string, or setting it to an <span>ASCII | |||
There was a problem hiding this comment.
Extreme nitpicking, but with this change
Authors should omit the attribute, instead of redundantly giving a JavaScript MIME type.
should arguably also be changed, lest someone argues that <script type> is fine.
There was a problem hiding this comment.
Agreed. "instead of redundantly giving a JavaScript MIME type (or adding an empty type attribute)" perhaps?
| other than JavaScript is outside the scope of this specification.</p> | ||
| but must not support other <span data-x="MIME type">MIME types</span> for JavaScript. User agents | ||
| are not required to support JavaScript. The processing model for languages other than JavaScript | ||
| is outside the scope of this specification.</p> |
There was a problem hiding this comment.
Do you agree that we should have a follow-up on this to change this somehow? It seems bad if WebAssembly wouldn't result in changes to the HTML Standard due to someone thinking we don't want to consider it.
There was a problem hiding this comment.
Note that this text is pre-existing and just got re-wrapped.
I suppose we could expand on this, yeah. Perhaps a call-out to WebAssembly in particular.
There was a problem hiding this comment.
Yeah, I didn't mean for this to block this PR on, I just noticed it in passing and wanted to do due diligence.
source
Outdated
| @@ -58502,8 +58477,9 @@ o............A....e | |||
| order of parameters matters is left undefined until such time as it matters; so far the only | |||
| relevant parameter was 'e4x', and it's gone for now --> | |||
source
Outdated
| @@ -112964,6 +112940,15 @@ if (s = prompt('What is your name?')) { | |||
| data-x="">JavaScript</code>", it has no effect), or replaced with use of the <code | |||
| data-x="attr-script-type">type</code> attribute.</p> | |||
|
|
|||
| <p>Authors should not specify a value for the <code data-x="attr-script-type">type</code> | |||
| attribute on <code>script</code> elements that is an <span>ASCII case-insensitive</span> match for | |||
| a <span>JavaScript MIME type</span>. Instead, they should omit the attribute, which has the same | |||
There was a problem hiding this comment.
Probably "the empty string or an ASCII case..." to avoid ambiguity about it being an ACIM for the empty string.
source
Outdated
|
|
||
| <li><p>The presence of a <code data-x="attr-style-type">type</code> attribute on a | ||
| <code>style</code> element if its value is an <span>ASCII case-insensitive</span> match for the | ||
| string "<code>text/css</code>".</p></li> |
|
For the script element type attribute summary, maybe something like:
And then at some point we define what "is not" means for MIME types. |
|
Hmm do we even list discouraged values in the attribute summary? We don't list language="" at all... In which case maybe just the latter two? Or maybe that's too confusing. |
|
I'd be okay with that, it's a summary after all and we do indeed seem to restrict it to things that are fully conforming. |
|
Pushed a fixup. |
| <li> | ||
| <p>If <var>element</var>'s <code data-x="attr-style-type">type</code> attribute is present and | ||
| its value is neither the empty string nor an <span>ASCII case-insensitive</span> match for | ||
| "<code>text/css</code>", then return.</p> |
There was a problem hiding this comment.
Firefox also allows whitespace to surround it, interestingly. I think it's correct to disallow.
Follows the clarifications in whatwg/html#3024. Also renames, re-titles, and re-jiggers some existing script tests.
|
Tests ready: web-platform-tests/wpt#7344 @annevk feel free to approve and merge if you're happy with things. |
Follows the clarifications in whatwg/html#3024. Also renames, re-titles, and re-jiggers some existing script tests.
Follows the clarifications in whatwg/html#3024. Also renames, re-titles, and re-jiggers some existing script tests.
Follows the clarifications in whatwg/html#3024. Also renames, re-titles, and re-jiggers some existing script tests.
<style>and<link rel="stylesheet">to only deal withCSS. Fixes Should we remove <style>'s language-agnostic spec prose? #2995.
type=""on<style>"obsolete but conforming", since it is alwaysredundant.
type="(a JS MIME type)"on<script>obsolete but conforming aswell. Previously we had a "should" requirement but had not recorded it
in the centralized obsolete-but-conforming section that collects such
requirements.
<style>operate on child text content. Fixes <style> should use child text content changed steps #2996."temporary") prohibiting unmatched comment-like syntax inside
<style>with a conformance requirement to be valid CSS.
value for script or style. Fixes <style type>/<script type> and MIME type parameters #3022.
@annevk, and ideally @zcorpan and @sideshowbarker, to review.
Not sure if we want to add more tests. If someone thinks we should, I'd appreciate help writing them :).