Comments (6)
shivanigithub
commented on June 23, 2024
3
The proposal below allows fenced frames to be delegated permissions similar to iframes but with some additional privacy gates like k-anonymity being applied to the permissions in addition to the url.
Summary
The proposed approach extends fenced frames to have the "allow" attribute similar to iframes as well as allows APIs like FLEDGE and SharedStorage to be able to associate a fenced frame with a set of permissions that are ok to be enabled in the FF document if the embedder also delegates it. The APIs will ensure that this set of permissions is verified for k-anonymity along with the url.
Details
The document here goes into more details of this solution and will be integrated in the explainer after an initial review.
from fenced-frame.
blu25
commented on June 23, 2024
1
We do need to be careful to ensure there's no risk of leaking information across the fenced boundary. There are a couple ways to do this:
1: Allow creating an opaque-ads fenced frame only if attribution reporting API is allowed for every origin, and then override the fenced frame's policy to allow all.
2: Allow navigating an opaque-ads fenced frame if attribution reporting API is allowed for the fenced frame's origin, and then override the fenced frame's policy to allow all.
We discussed offline and agreed that the 2nd solution is the better one, since the attribution reporting policy is delegated to child frames where they can change the policy as they please, so option 1 would be adding unnecessary restrictions.
Once in the fenced frame, allow attribution reporting for all origins (overriding the default of only allowing it for same-origin subframes) unless explicitly disabled by the page's headers. It will ignore the headers of its embedder to stop the communication channel.
from fenced-frame.
domfarolino
commented on June 23, 2024
from fenced-frame.
csharrison
commented on June 23, 2024
Thanks @shivanigithub , that proposal seems fine with me!
from fenced-frame.
shivanigithub
commented on June 23, 2024
The document linked in the comment above is posted in the explainer here
The changes in the document require FLEDGE API changes for IGs to declare if they are ok with a FF to load without ARA and have that be part of the k-anonymity check.
In the short term ARA support is now by default on in all FLEDGE FFs unless disallowed by the top-level page, thus closing this issue.
from fenced-frame.
cklim483
commented on June 23, 2024
from fenced-frame.
Related Issues (20)
- Remove fenced frame config mapping when urn iframes are removed HOT 1
- Permissions policy "container policy" check should be sufficiently fenced
- Explainer: mention the developer-only flag to enable `FencedFrameConfig` constructor HOT 2
- Incompatible with a CSP sandbox HOT 4
- Can Shared Storage be used from Fenced Frames during Origin Trials? HOT 2
- Store the beacon's initiator origin in the pending event struct
- How do we embed tags in turtle dove model within fenced frames which return dynamic data from an ad-server HOT 1
- [Spec] Spec "substitute macros" helper.
- [Specification] Spec should clearly outline fenced APIs + fencing principles HOT 4
- Say something about what eventTypes are valid HOT 4
- Add example to introduction
- Please add a formal 'supported until at least 2026' note for deprecatedReplaceInURN HOT 2
- Broken references in Fenced Frame
- [Spec] Spec network revocation mechanism
- [Spec] Spec sandbox attribute for <fencedframe>
- [Spec] Spec Protected Audience aggregate reporting integration
- Allow-Cross-Origin-Event-Reporting not defined? HOT 1
- Spec does not describe navigator.deprecatedURNToURL
- [Spec] Spec that disabling untrusted network disables top-level navigations (_unfencedTop and popups) HOT 4
- [Spec] Spec _unfencedTop HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from fenced-frame.