Intent to Extend Experiment: Document-Isolation-Policy
Chromestatus
Contact emails
cl...@google.comExplainer
https://github.com/WICG/document-isolation-policy/blob/main/README.mdSpecification
https://wicg.github.io/document-isolation-policySummary
Document-Isolation-Policy allows a document to enable crossOriginIsolation for itself, without having to deploy COOP or COEP, and regardless of the crossOriginIsolation status of the page. The policy is backed by process isolation. Additionally, the document non-CORS cross-origin subresources will either be loaded without credentials or will need to have a CORP header.
Blink component
Blink>SecurityFeatureTAG review
https://github.com/w3ctag/design-reviews/issues/995TAG review status
PendingOrigin Trial Name
Document Isolation PolicyChromium Trial Name
DocumentIsolationPolicyOrigin Trial documentation link
https://github.com/WICG/document-isolation-policyWebFeature UseCounter name
kDocumentIsolationPolicyRequireCorpRisks
Interoperability and Compatibility
None
Gecko: No signal (https://github.com/mozilla/standards-positions/issues/1074)
WebKit: No signal (https://github.com/WebKit/standards-positions/issues/399)
Web developers: Positive (https://github.com/WICG/proposals/issues/145) See the initial WICG proposal. We've also been in touch with developers at Google and Microsoft who think the proposed API will allow them to use Shared-Array-Buffers.
Other signals:
WebView application risks
Does this intent deprecate or change behavior of existing APIs, such that it has potentially high risk for Android WebView-based applications?
None
Goals for experimentation
Reason this experiment is being extended
Two crashes have been reported (crbug.com/394350439 and crbug.com/393480086) which will force us to turn down the experiment in M132 and M133. We would like to give enough time to tester to report any additional issues, so we'd like to extend the trial by 2 milestones.
Ongoing technical constraints
None.
Debuggability
None
Will this feature be supported on all six Blink platforms (Windows, Mac, Linux, ChromeOS, Android, and Android WebView)?
NoOur Origin Trial will only be supported on Windows, Mac and Linux at first, as support on Android requires more development work due to the different process allocation model. We will add support on Android as soon as possible. Support on Android WebView is not possible due to the lack of process isolation.
Is this feature fully tested by web-platform-tests?
Yeshttps://wpt.fyi/results/html/document-isolation-policy?label=experimental&label=master&aligned
Flag name on about://flags
NoneFinch feature name
DocumentIsolationPolicyRequires code in //chrome?
FalseTracking bug
https://g-issues.chromium.org/issues/333029146Estimated milestones
| Origin trial desktop first | 132 |
| Origin trial desktop last | 134 |
| Origin trial extension 1 end milestone | 136 |
Link to entry on the Chrome Platform Status
https://chromestatus.com/feature/5141940204208128?gate=4610326789881856Links to previous Intent discussions
Intent to Prototype: https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAOmohS%2BzyOX6amnva6t_HBsXPXAFoZEri7A78ka7-OwA66B%3Dmw%40mail.gmail.comIntent to Experiment: https://groups.google.com/a/chromium.org/g/blink-dev/c/p52-T7m3rOM?e=48417069
Mike Taylor
That still puts you within the 6 milestones you can get for free
- so, LGTM to extend to 137.
If you truly want to stop at 136, you can do that too. But you've
got an extra milestone in case you need it.
--
You received this message because you are subscribed to the Google Groups "blink-dev" group.
To unsubscribe from this group and stop receiving emails from it, send an email to blink-dev+...@chromium.org.
To view this discussion visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/67a63f67.2b0a0220.2908d.02b2.GAE%40google.com.