--
You received this message because you are subscribed to the Google Groups "OEmbed" group.
To unsubscribe from this group and stop receiving emails from it, send an email to oembed+un...@googlegroups.com.
To post to this group, send email to oem...@googlegroups.com.
Visit this group at http://groups.google.com/group/oembed?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.
As a starting point, it's probably worth pointing out that oEmbed could easily be considered dead. Though there are some large implementations, new ones aren't really appearing, and there's not really any discussion here or elsewhere about the spec.Facebook's open graph protocol (http://ogp.me/) basically accomplishes what you're proposing in a similar way, and it's widely implemented on real world websites. They have a discussion group, but I could not speak to how open they are to changing the protocol. I'd recommend checking it out and sending them an email.From a practical perspective, the one thing that's somewhat unfortunate about open graph and to your proposal is that working with HTML can be fairly obnoxious (and delivers a ton of content you don't want). That being said, not having a separate API endpoint is a pretty big plus, and if servers support HEAD requests appropriately you can mitigate some of the overhead.
--
You received this message because you are subscribed to the Google Groups "OEmbed" group.
To unsubscribe from this group and stop receiving emails from it, send an email to oembed+un...@googlegroups.com.
To post to this group, send email to oem...@googlegroups.com.
Visit this group at http://groups.google.com/group/oembed?hl=en.
For more options, visit https://groups.google.com/groups/opt_out.
A lot of the objections in the doc Brian wrote could be solved if there were a standard for communicating with iframes.
Specifically if an endpoint could return and iframe url and there were a standard javascript library for the frame to communicate with the parent using postMessage almost all of the security sandboxing issues would go away. The frame would need to be able to request a resize, request font and color info etc. If such a standard existed you could request an article, throw it in an iframe and know that it would negotiate with the parent frame how it wanted to be displayed.
The beauty in oEmbed is it's simplicity, it's a great starter API and
is widely adopted because of that. If there is another pass at the
spec, then I hope it remains simple.
If you want a wish list of what needs to change, I'll start:
* Audio type
* callback declaration
* https endpoint declaration
* A standard licensing declaration
* Wording that states strongly that all video, rich, audio embeds
SHOULD be served by the provider in an iframe.
* CORS support
You can not build one without the other. If you need to introduce new spec you need to start it's adaption. We chose to start it by giving consumers a good coverage of providers under new format.
It doesn't matter for our business which format it'll be, we just need one that is widely adapted. The one that we are ready to start providing answers a lot of your concerns as well as some others. We still need some tweaks and some community alpha feedback until the spec can be published though.
The problem with the html response you really can't predict that it will fit it the box provided without knowing a lot more about the users browser and the target page. You need to know fonts, font size, line spacing and be able to predict how the browser will render the content - otherwise you almost always end up with scroll bars on an iframe which sucks from a UI standpoint.Fixed sizes work for fixed size content like video players and images, for text you need flexibility. In most cases it's more useful for the iframe to be able to say "I need to be this many pixels long to render this content" and have the parent resize it. we do this on Repost.Us, disqus does it for their comment embeds, storify does it for their embeds. In all cases the embedding site has to trust our javascript is going to correctly create a frame and sandbox it's content. If there were a standard way for frames to communicate there would be no need to trust foreign scripts.John
Ok, I see your point, and I agree about scrollbars in iframes. The parent document can't poke into a cross-domain iframe? I thought it was just that the iframe can't look up.
-Brian