Default capabilities of cross domain iframe #22
Comments
|
I agree that it should be possible to have cross-domain iframes both with and without the ability to add people to interest groups. But it seems to me that there are two reasons we might want the default to be off:
You're quite right that these need to be balanced against the work we're requiring of sites that do want to give this capability to a 3rd party. But it sounds like you're thinking about publishers who get some financial benefit from including these iframes. That's the right sort of motivation for sites to make this change when they intend to do so! |
|
Closing this issue as it represents past design discussion that predates more recent proposals. I believe some of this feedback was incorporated into the Protected Audience (formerly known as FLEDGE) delegation mechanism. If you feel further discussion is needed, please feel free to reopen this issue or file a new issue. |
By default, cross-domain iframes should be able to call the TURTLEDOVE APIs. Today, groups of publishers often deploy iframes managed by a single owner to create large scale interest groups using third-party cookies. Updating these iframes can be a challenge for publishers. If the iframes are able to call the TURTLEDOVE APIs by default, the iframe owners can migrate to TURTLEDOVE, while the interest group creation will continue to work for the publishers, without the publisher having to make any changes.
The text was updated successfully, but these errors were encountered: