Contact emailstit...@google.com, l...@chromium.org, ph...@chromium.org
This feature applies Private Network Access checks to web workers: dedicated workers, shared workers and service workers.
These checks apply to all worker-specific fetches:
- initial worker script fetch
- fetch within workers
- service worker script update fetch
In this first step, we'd like to ship warnings in DevTools to M110 when the above fetches happen. Currently, 0.000319% of worker script fetches  and 0.043019% of the fetches within workers  are private network access. We think we can drive the number further down if we show warnings in DevTools. We're also looking into allowing same-origin or same-site requests, as Titouan mentioned in this thread https://groups.google.com/a/chromium.org/g/blink-dev/c/FlenxUPCDec/m/C9LuRoQQAwAJ
TAG review statusNot applicable
Interoperability and CompatibilityGecko
: Worth prototyping (https://github.com/mozilla/standards-positions/issues/143
: No signalWeb developers
: No signalsOther signals
WebView application risks
Does this intent deprecate or change behavior of existing APIs, such that it has potentially high risk for Android WebView-based applications?
Will this feature be supported on all six Blink platforms (Windows, Mac, Linux, Chrome OS, Android, and Android WebView)?No
Not enabled by default on Android WebView due to the lack of support for deprecation trials.No
Requires code in //chrome?False
M110 to M112
Anticipated spec changes
Open questions about a feature may be a source of future web compat or interop issues. Please list open issues (e.g. links to known github issues in the project for the feature specification) whose resolution may introduce web compat/interop risk (e.g., changing to naming or structure of the API in a non-backward-compatible way).
Link to entry on the Chrome Platform Statushttps://chromestatus.com/feature/5742979561029632