16:00:44 RRSAgent has joined #webapps 16:00:44 logging to http://www.w3.org/2014/10/28-webapps-irc 16:00:53 glenn has joined #webapps 16:00:56 Louay has joined #webapps 16:01:11 RRSAgent, make log public 16:01:16 Present+ Brian_Raymor 16:01:18 RRSAgent, log spans midnight 16:01:18 I'm logging. I don't understand 'log spans midnight', ArtB. Try /msg RRSAgent help 16:01:30 aaa has joined #webapps 16:01:42 RRSAgent, logs span midnight 16:01:42 I'm logging. I don't understand 'logs span midnight', ArtB. Try /msg RRSAgent help 16:01:58 RRSAgent, this meeting spans midnight 16:02:54 zcorpan has joined #webapps 16:03:06 alan-i has joined #webapps 16:03:09 benjamp has joined #webapps 16:03:56 myakura has joined #webapps 16:03:57 scribe: timeless 16:04:11 ScribeNick: timeless 16:04:33 Agenda: https://www.w3.org/wiki/Webapps/November2014Meeting#Agenda_Tuesday_October_28 16:04:35 StephanSteglcih has joined #webapps 16:05:22 RRSAgent, make minutes 16:05:22 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html ArtB 16:05:32 Dong-Young has joined #webapps 16:05:39 RRSAgent, make log Public 16:05:42 anssik has joined #webapps 16:06:02 Present+ Art_Barstow, Josh_Soref, Charles_Neville 16:06:21 Present+ Yves_Lafon 16:06:25 Present+ Ben_Peters 16:06:34 Zakim, who is on the call? 16:06:34 On the phone I see +1.617.225.aaaa 16:06:38 s/Charles_Neville/chaals 16:06:42 alia has joined #webapps 16:06:42 Present+ Xiaoqian_Wu 16:06:43 Present+ Adrian_Bateman 16:06:43 weinig has joined #webapps 16:06:49 Present+ Ali_Alabbas 16:06:51 ShijunS has joined #webapps 16:06:51 Zakim, aaaa is Portland 16:06:51 +Portland; got it 16:06:53 <_M_> present+ Mohammed Dadas 16:06:57 spoussa has joined #webapps 16:07:04 zakim, call Portland 16:07:04 ok, ArtB; the call is being made 16:07:05 Present+ Sam_Weinig 16:07:06 present+ Dieter Gludovacz 16:07:06 +Portland 16:07:14 Present+ Hiroyuki_Aizu 16:07:17 present+ Shijun_Sun 16:07:18 sicking has joined #webapps 16:07:20 Present+ Sakari_Poussa 16:07:20 Present+ Alan_Iida 16:07:25 Zakim, who is on the call? 16:07:25 On the phone I see Portland, Portland 16:07:28 zakim, who is here 16:07:28 chaals, you need to end that query with '?' 16:07:30 dom has joined #webapps 16:07:31 kenneth_ has joined #webapps 16:07:38 -Portland 16:07:46 Present+ dom 16:07:54 zakim, Portland is really Laszlo 16:07:54 +Laszlo; got it 16:07:59 Present+ Kenneth_Christiansen 16:08:05 zakim, call portland 16:08:05 ok, chaals; the call is being made 16:08:06 zakim, call portland 16:08:06 ok, ArtB; the call is being made 16:08:07 +Portland 16:08:08 +Portland.a 16:08:13 -Portland.a 16:08:23 zakim, call elvis 16:08:23 I am sorry, chaals; I do not know a number for elvis 16:08:25 Jingwang_Qi has joined #webapps 16:08:37 rniwa has joined #webapps 16:08:40 Zakim, Portland has chaals, ArtB, timeless, Yves 16:08:40 +chaals, ArtB, timeless, Yves; got it 16:08:45 Hyunjin has joined #webapps 16:08:51 present+ Jonas_Sicking 16:08:57 +[IPcaller] 16:08:59 zakim, call someone randomly and ask if their fridge is running. And if they say yes, tell them to go catch it and then laugh... 16:08:59 I don't understand you, chaals 16:09:04 Zakim, Portland also has sicking 16:09:04 sunghan has joined #webapps 16:09:04 +sicking; got it 16:09:08 zakim, you're not unique 16:09:08 I don't understand 'you're not unique', chaals 16:09:15 Zakim, [IP is smaug 16:09:15 +smaug; got it 16:09:30 Present+ Olli_Pettay 16:09:37 Zakim, nick smaug is Olli_Pettay 16:09:37 sorry, smaug, I do not see a party named 'Olli_Pettay' 16:10:06 zakim, who is here? 16:10:06 On the phone I see Laszlo, Portland, smaug 16:10:07 Portland has chaals, ArtB, timeless, Yves, sicking 16:10:07 On IRC I see sunghan, rniwa, Jingwang_Qi, kenneth_, dom, sicking, spoussa, ShijunS, weinig, alia, anssik, Dong-Young, StephanSteglcih, myakura, benjamp, alan-i, zcorpan, aaa, 16:10:07 ... Louay, glenn, RRSAgent, jcdufourd, a12u, brianraymor, shoko, adrianba, bryan_, Zakim, _M_, youngwoojo, ArtB, kunio, lgombos, gludi|2, kurosawa, chaals, annevk, Tomoki, shepazu, 16:10:09 ... taku, Tomoyuki, fjh, Cyril, smaug, kbx, arunranga, kochi1, kochi, paul___irish, mihnea_____, MarkS, plinss, marcosc_, tyoshino, igrigorik, stryx`_, stryx`, MikeSmith, hober, 16:10:09 ... slightlyoff 16:10:16 Hyunjin has joined #webapps 16:10:17 GeunHyung has joined #webapps 16:10:18 hiroto_ has joined #webapps 16:10:24 Zakim, smaug is Olli_Pettay 16:10:24 +Olli_Pettay; got it 16:10:32 Zakim, nick smaug is Olli_Pettay 16:10:33 Topic: Introductions 16:10:34 ok, smaug, I now associate you with Olli_Pettay 16:10:38 Present+ Olli_Pettay 16:10:40 chaals: good morning 16:10:55 ... We'll wait until 9:30 until we start our first item 16:11:08 ... as we traditionally do, we'll go around the room asking people to introduce themselves 16:11:17 Present+ Laszlo_Gombos 16:11:18 ... I'm chaals, from Yandex, co-chair of this group 16:11:23 ArtB: Arthur, I work for Nokia 16:11:31 ... i'm also one of the chairs 16:11:56 kn1 has joined #webapps 16:11:59 Josh_Soref: Josh Soref, BlackBerry, Scribe, Observer 16:12:11 spoussa: Sakari Poussa, Intel 16:12:15 dka has joined #webapps 16:12:22 kenneth_: Kenneth Christiansen, Intel 16:12:29 weinig: Sam Weinig, Apple 16:12:33 ‘ello 16:12:38 benjamp: Ben Peters, Microsoft 16:12:42 sicking: Joans Sicking, Mozilla 16:12:55 ShijunS: Shijun Sun, Microsoft 16:13:03 s/Joans/Jonas/ 16:13:03 alan-i: Alan, Microsoft 16:13:13 plh has joined #webapps 16:13:19 forty4 has joined #webapps 16:13:22 igarashi has joined #webapps 16:13:22 xiaoqian: Xiao, W3 Team Contact 16:13:30 Claes has joined #webapps 16:13:33 Yves: Yves, W3C 16:13:36 s/Alan/Ali/ 16:13:51 wooglae has joined #webapps 16:14:22 a12u: XXX, 16:14:31 jcdufourd: Jean-Claude Dufourd, Institut Mines Telecom, observer 16:14:35 Louay Bassbouss 16:14:54 StephanSteglcih: QQ 16:14:55 kinjim has joined #webapps 16:15:03 Dong-Young Lee (LG) 16:15:11 youngwoojo: youngwoojo, LGE, Observer 16:15:19 bryan: Bryan Sullivan 16:15:23 PPP: PPZ, 16:15:30 s/alan-i: Alan/alia: Ali 16:15:37 Evangelos has joined #webapps 16:15:40 annevk has left #webapps 16:15:46 s/QQ/Stephan Steglich, Fraunhofer Fokus, observer/ 16:15:48 richt: Rich Tibbet, Opera 16:16:01 stone has joined #webapps 16:16:02 shoko: Shoko RRR 16:16:06 ZZZ 16:16:09 AAA 16:16:11 BBB 16:16:13 CCC 16:16:23 DDD: France Telecom, Obs 16:16:25 EEE 16:16:27 Evangelos Vlachogiannis Fraunhofer FIT, observer 16:16:32 FFF: Observer 16:16:37 GGG: Observer 16:16:45 HHH: LG 16:16:48 III: Orange 16:16:49 GeunHyung Kim 16:16:49 s/RRR/Okuma, Tomo-Digi Corporation, Observer/ 16:16:52 s/alan-i/alia/ 16:16:55 JJJ 16:16:55 KKK 16:17:00 LLL: Japan, Observer 16:17:01 s/PPP PPZ/ Bill Hsiung, MSTAR Semiconductor 16:17:06 MMM: Oracle 16:17:14 marcosc_: Marcos Caseras, Mozilla 16:17:20 VVV 16:17:21 Kumar has joined #webapps 16:17:22 WWW 16:17:26 israelh has joined #webapps 16:17:27 XXX Observer 16:17:32 s/PPP: PPZ/Bill Hsiung, MSTAR Semiconductor 16:17:34 dom: Dominic, W3C 16:17:39 Present+ Israel_Hilerio 16:17:40 EWQ Softbank 16:17:44 RFE 16:17:51 WQQ 16:17:53 POQ 16:17:56 LMN 16:18:01 Present+ Wooglae_Kim 16:18:02 FSQ Tencent 16:18:03 s/nic/nique/ 16:18:13 Dan Appelquist: dka, @torgo; WebApps wg member; TAG Co-Chair; URL fan; #FirefoxOS fanboy; also A.C. rep for Telefónica. 16:18:18 Adrian Bateman, Microsoft 16:18:19 Hoyoun has joined #webapps 16:18:21 dka: Dan Applequest 16:18:28 adrianba: Adrian, Microsoft 16:18:29 marcosc has joined #webapps 16:18:31 s/FSQ/Xitong Huang 16:18:36 IQQ 16:18:39 DQQ 16:18:45 hjlee has joined #webapps 16:18:53 Present+ Claes_Nilsson 16:18:58 [ Scribe apologizes ] 16:19:01 Nishanth has joined #webapps 16:19:05 s/Applequest/Appelquist 16:19:05 Topic: Agenda 16:19:13 s/Topic: Agenda// 16:19:14 <_M_> s/III:/Mohammed Dadas 16:19:25 smaug: Olli Pettay, Mozilla 16:19:50 lgombos: Laszlo Gombos, Samsung 16:19:52 hiroki has joined #webapps 16:19:57 topic: Agenda 16:20:03 donghoon has joined #webapps 16:20:11 +[IPcaller] 16:20:17 present +igarashi 16:20:22 zakim, [IPcaller] is me 16:20:24 +anssik; got it 16:20:28 notbenjamin has joined #webapps 16:20:28 Present+ Anssi_Kostiainen 16:20:41 i/topic/anssik: Anssi Kostiainen, Intel/ 16:20:42 +igarashi 16:20:45 ArtB: we were considering talking with sysapps 16:20:52 marcosc_: let's get it out of the way 16:21:07 s/+igarashi/Present+ igarashi/ 16:21:17 marcosc_: what APIs can be salvaged from SysApps 16:21:21 ... brought over to this group 16:21:25 ArtB: put that in at 1pm 16:21:29 ... look around for wonsuk 16:21:41 ... could one of you send an email to public-sysapps 16:21:47 mounir: marcosc_ would be glad to do that 16:22:34 ArtB: 1-1:30pm 16:22:39 wooglae1 has joined #webapps 16:22:42 mounir: Permissions API ? 16:22:49 ... after the break at 11am? 16:22:54 chaals: yeah... 16:23:04 RRSAgent, draft minutes 16:23:04 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html timeless 16:23:17 chair: ArtB, chaals 16:23:22 tomoyuki has joined #webapps 16:23:38 i/topic:/rubys: Sam Ruby, Apple/ 16:23:43 cyns has joined #webapps 16:23:46 chaals: anything else for the agenda? 16:23:49 bkardell_ has joined #webapps 16:23:55 ... we could start on Screen Orientation 16:24:07 Topic: Screen Orientation 16:24:13 mounir: we just finished a new WD 16:24:13 -> https://w3c.github.io/screen-orientation/ Screen Orientation ED 16:24:17 ... we failed to go to LC 16:24:27 ... it's now shipping in Chrome (including for Android) 16:24:33 ... i'm not sure if Mozilla will update 16:24:34 -> https://github.com/w3c/screen-orientation/issues Screen Orientation Open Issues 16:24:38 ... there are two implementations 16:24:44 ... one from Mozilla, one from Microsoft 16:24:48 s/two/two prefixed/ 16:25:00 ... also Tizen has an unprefixed outdated implementation 16:25:05 chaals: marcosc_? 16:25:12 mounir: wrt Open Issues 16:25:21 ... the real outstanding one is Animation Frame Task 16:25:25 ... it's why we didn't go to LC 16:25:31 ... my opinion is that it isn't important 16:25:35 ... I think sicking would agree 16:25:36 -> https://github.com/w3c/screen-orientation/issues/40 Issue 40 Use animation frame task 16:25:44 ... the problem is that Animation Frame isn't defined anywhere 16:25:57 ... we're stalling the spec for something that might not be defined for two years 16:26:01 marcosc_: i was going to echo what he said 16:26:09 ... from my perspective, it [the spec], is pretty much done 16:26:18 weinig: can you give us an overview 16:26:22 Nishanth has joined #webapps 16:26:24 ... i know the security restrictions is a bit vague 16:26:29 ... it allows for essentially anything 16:26:35 ... do you have an overview of what people have done 16:26:49 ... i know that's one of the things that of concern to us 16:26:57 mounir: the spec is vague for that reason 16:27:06 ... we want UAs to have their own security decisions on top 16:27:12 ... full screen is something on top 16:27:12 jhund has joined #webapps 16:27:22 ... we said that it's optional to require Fullscreen 16:27:31 ... this is how Chrome Android behaves on KitKat 16:27:43 ... if you have no browser ui, fullscreen is not a requirement 16:27:53 weinig: to be clear,my concern is that the spec does not define that 16:27:56 ... and makes it optional 16:28:00 ... it defines many ways to do this 16:28:09 ... but someone to use this won't know what it will do 16:28:17 ... Why did you make it a MAY in the first place? 16:28:25 mounir: we have two different scenarios in Chrome Android 16:28:34 ... if you fullscreen, you might not have browser ui 16:28:38 ... you're more maximized 16:28:43 Kevin_Hill has joined #webapps 16:28:44 ... we couldn't require fullscreen 16:28:54 weinig: i'm not sure a UC for a non-browser scenario... 16:29:09 mounir: on the latest Android, Chrome Tabs behave like activities 16:29:16 ... it's ok for a tab to change screen orientation 16:29:23 ... and any app can lock screen orientation 16:29:31 ... in that case, it's ok for an app to lock screen orientation 16:29:38 ... we could make it a stronger recommendation 16:29:45 ... assuming cases where it isn't required seems 16:29:52 ... but a MUST sounds inappropriate 16:29:56 weinig: I disagree 16:29:58 sam has joined #webapps 16:30:06 ... especially for a security requirement 16:30:14 ... taking control of pieces of the browser UI 16:30:19 ... that the user thought the user controlled 16:30:23 ... and making it less clear 16:30:29 ... makes it easy to fishable 16:30:32 TNK has joined #webapps 16:30:41 sicking: w/ Safari on iOS, the urlbar scrolls away 16:30:50 weinig: that's true, you can get rid of the urlbar 16:30:56 ... but you can't control screen orientation 16:31:03 sicking: why is that a security issue 16:31:09 weinig: it increases the ability to phish 16:31:19 ... mocking OS UI 16:31:26 mounir: can't you mock this w/o ? 16:31:32 weinig: i haven't seen a good example of that 16:31:40 ... but if so, i don't see why to lock to fullscreen 16:31:52 mounir: the reason to lock to fullscreen is for "annoyance" 16:32:02 ... it makes a certain amount of user interaction first 16:32:07 ... the other bit is chrome UI 16:32:21 ... if you change tabs, and everything starts switching, that's problematic 16:32:27 ... but once tabs start behaving like apps, it's more ok 16:32:39 ... we're not doing that for security, but mostly for UI and annoyance 16:32:50 weinig: we should probably change the term from Security to Something Else 16:32:55 chaals: not probably, but yes 16:32:59 ... annoying people is bad design 16:33:10 ... the example w/ phish is that you put a 90 degree rotated browser 16:33:17 weinig: I take their example 16:33:24 ... that you could detect rotation and 16:33:32 chaals: i agree that you don't need the MUST 16:33:36 weinig: i wouldn't go that far 16:34:20 marcosc: I'm recording an issue on this now 16:34:31 kenneth_: is it possible for users/something to suppress this? 16:34:38 mounir: that's what we do on Chrome Desktop 16:34:44 kenneth_: should that be a MUST? 16:34:50 mounir: the lock request would fail if that happens 16:34:55 ... I don't know how to make it a must 16:35:01 ... you have the problem of tablets/laptops 16:35:12 ... you might imagine that a tablet could lock screen 16:35:19 ... but once you dock, it isn't ok 16:35:24 kenneth_: i was just wondering 16:35:29 ... in chrome, you can go back in history 16:35:37 ... if i do that and orientation changes, that's confusing 16:35:40 filed: https://github.com/w3c/screen-orientation/issues/82 16:35:46 ... [Back action] 16:36:05 kenneth_: I was on a locked orientation page 16:36:12 ... I transition to a page that doesn't have a locked orientation 16:36:16 ... and then I click back 16:36:27 mounir: doesn't that happen on mobile already? 16:36:38 kenneth_: that's what I'm talking about when i click on browser chrome 16:36:52 mounir: that's why we don't want it for non fullscreen 16:37:00 ... i don't know if it's the role of a spec to make a mandate 16:37:07 sicking: in all mobile platforms 16:37:15 ... there are things where you bookmark a homepage 16:37:20 ... it opens a page in minimal/no chrome 16:37:28 ... in that scenario there's no reason not to allow it 16:37:34 ... but in some cases there's some chrome 16:37:39 ... it can be annoying in that situation 16:37:52 ... but in FirefoxOS, we decided if a user moves to the homescreen, the user trusts it 16:38:00 ... and allow them to fullscreen/orient 16:38:09 -> https://github.com/w3c/screen-orientation/issues/82 New Screen Orientation issue based on Sam's feedback 16:38:11 chaals: Mozilla, any plans 16:38:13 sicking: yes 16:38:27 chaals: Microsoft? 16:38:37 adrianba: I imagine we'll snap to the spec when we get around to it 16:38:39 ... i don't know when 16:38:46 marcosc: our concern 16:38:51 ... we've changed the spec significantly 16:38:56 ... if that's ok with you guys 16:39:03 chaals: weinig, you expressed concern 16:39:12 weinig: we'll give a more detailed response to the spec in email 16:39:21 marcosc: mounir said it's already in chrome 16:39:26 ... we'll want to update soon 16:39:34 ... early feedback is always better 16:39:36 weinig: obviously 16:39:44 chaals: ArtB wants to know when we're going to LC 16:40:08 ... and you have to restart LC if you have issues 16:40:13 ... unless we do the new process 16:40:19 [ chaals is plugging Process-2014] 16:40:27 weinig: we understand you want to move it 16:40:32 ... we'll give feedback soon 16:40:39 chaals: any more comments/questions? 16:40:42 [ Silence ] 16:40:58 RRSAgent, draft minutes 16:40:58 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html timeless 16:41:26 Zefa has joined #webapps 16:41:36 Meeting: WebApps WG F2F 16:41:41 topic: Manifest 16:41:43 https://github.com/w3c/manifest/issues 16:41:43 s/concern/concern - do you want to give any more detailed info here? 16:41:59 -> http://w3c.github.io/manifest/ Manifest ED 16:42:02 marcosc: manifest is moving along 16:42:07 ... we're doing it in two phases 16:42:11 ... not formally, but... 16:42:14 ... a simple v1 16:42:17 ... to see what would be needed 16:42:25 ... this has since shipped in Chrome Beta on Android 16:42:30 q+ to feature creep 16:42:31 ... and I'm implementing the spec in Gecko 16:42:46 ... with intent to have it in FirefoxOS at some point 16:42:48 ... the spec has 16:42:51 ... issues 16:42:57 ... there aren't many open issues 16:43:00 ... mostly feature requests 16:43:06 ... it's really simple 16:43:09 jungkees has joined #webapps 16:43:14 ... the biggest aspect, are issues in v2 16:43:18 ... we need discussion about 16:43:20 Present+ Jungkee_Song 16:43:22 ... "what is a web application" 16:43:24 skim13 has joined #webapps 16:43:28 ... "what is the scope of a web application" 16:43:37 ... in url space, "what is the scope of a web application" 16:43:45 ... how does that work with service workers 16:43:51 ... also in coordination w/ WebAppSec WG 16:44:00 ... where can i load the app from, where can I load icons from 16:44:02 ... no major issues 16:44:06 ... discussions on github page 16:44:09 ... everyone's happy 16:44:12 ... questions, comments? 16:44:13 q? 16:44:14 ack chaals 16:44:14 chaals, you wanted to feature creep 16:44:31 chaals: we regard the inability to internationalize to be an issue, not a feature 16:44:52 ... issue #208 / issue #211 16:44:56 marcosc: the issues are there 16:45:01 ... we're discussing various models 16:45:05 ... the approach we're taking 16:45:11 ... we need to look at how apps are made today 16:45:19 ... you don't have internationalized html elements 16:45:26 -> https://github.com/w3c/manifest/issues/208 Manifest Issue 208 16:45:31 ... you don't have a paragraph in english, and then a paragraph in japanse 16:45:35 -> https://github.com/w3c/manifest/issues/211 Manifest Issue 211 16:45:41 ... a question of a single page / one for each language 16:45:42 q+ 16:45:51 ... that's the problem space for the 16:45:52 q+ to feature creep 16:46:02 kenneth_: the server could return different answers 16:46:09 q+ 16:46:29 marcosc: html doesn't do that (multiple languages in a single document) 16:46:40 ack mounir 16:46:41 spoussa_ has joined #webapps 16:46:59 mounir: manifest v1 goal was feature parity with add-to-homescreen that all browsers were doing 16:47:13 ... nearly every mobile platform supported in their own ways 16:47:15 ... new meta tags 16:47:18 ... that was a mess 16:47:25 ... feature parity was the most important goal 16:47:31 ... i18n would be the most important next step 16:47:34 ... i think we should do that now 16:47:46 ... we should iterate from here, instead of the best solution that will never happen in the next decade 16:47:58 chaals: i don't think we need to aim for the perfect solution 16:48:06 ... we should aim for problematic 16:48:16 ... doing as badly as you can do in html isn't a goal 16:48:19 ack chaals 16:48:19 chaals, you wanted to feature creep 16:48:26 ... another thing that is feature creep 16:48:28 darobin has joined #webapps 16:48:29 ... is a source for updated tags 16:48:39 ... in Tableaux, in Yandex, open your screen and get your favorite sites 16:48:44 ... you can put your text label 16:48:50 ... the widget will go and fetch some data 16:48:56 ... update the number of email messages 16:48:59 [ examples ] 16:49:14 yinagaki has joined #webapps 16:49:14 chaals: this feature is quite common in places 16:49:19 marcosc: Speed Dial? 16:49:20 chaals: yes 16:49:31 ... being able to do that so your application icon shows how many waiting emails 16:49:39 [ ... or missed phonecalls ] 16:49:46 chaals: url spits back a bit of json 16:49:50 ... Opera has something similar 16:49:55 ... we'd like to add that 16:49:58 q+ 16:50:01 ... we'd be happy if you took our api 16:50:03 himat has joined #webapps 16:50:06 marcosc: file a feature request 16:50:09 ... we can discuss it 16:50:11 ack me 16:51:04 Josh: SOunded like someone said they didn't see a particular need to have all languages handy, but I did a demo where I asked you to switch, and you may have gone offline. The usecase of switching language offline isn't so unlikely 16:51:12 s/chaals/scribe/ 16:51:26 marcosc: we don't have data about how often this happens 16:51:30 ... it might be rare or common 16:51:33 ... i don't know 16:51:34 Hoyoun has left #webapps 16:51:38 mounir: i doubt it's common 16:51:48 kenneth_: same problem w/ service worker 16:51:54 ... i remember working in Gnome Desktop 16:51:57 ... we added i18n 16:52:01 ... .desktop files 16:52:05 ... it became a problem w/ loading 16:52:12 ... it needs to be separate files 16:52:16 mounir: isn't there something for json-imports? 16:52:19 q? 16:52:20 ack Claes 16:52:23 hoyounkim has joined #webapps 16:52:32 s/SOunded/Sounded/ 16:52:33 q+ 16:52:37 Claes: we had a discussion on the CSP field 16:52:45 ... trying to understand how it works 16:52:54 ... if I want to specify CSP per CSP spec 16:52:57 ... can i do that in Manifest? 16:53:03 marcosc: you can, not today 16:53:10 ... we have a separate spec, we're hoping to fold 16:53:28 jcraig has joined #webapps 16:53:32 -> http://w3c.github.io/manifest/#content-security-policy Content Security Policy 16:53:34 ... you can see Example.com has a CSP policy, and that controls where the manifest is loaded from 16:53:39 http://w3c.github.io/manifest-csp 16:53:43 ... where you can get your icons from 16:53:48 ... and where you can load your manifest from 16:53:52 ... we're adding, 16:53:56 ... a spec anssik is working on 16:54:04 ... to add a csp added to the origin/html file 16:54:11 ... so you can tighten the policy of the html document 16:54:21 Claes: i don't see that here 16:54:27 [ Link dropped by kenneth_ ] 16:54:56 [ marcosc reads 1.1 Example 1 ] 16:55:02 marcosc: you can have one from http, one from meta 16:55:05 ... then also from here 16:55:10 Claes: thanks 16:55:20 marcosc: for people interested in the spec 16:55:25 ... should we fold this into the spec proper? 16:55:30 ... we can do this for FirefoxOS 16:55:33 JonathanJ3 has joined #webapps 16:55:37 kenneth_: for this, we need to fix the URL scope 16:55:39 marcosc: yeah 16:55:45 ... right now it would apply to just start-url 16:55:45 Travis has joined #webapps 16:55:50 mounir: don't you have issues 16:55:57 ... where manifest is loaded, and then this won't apply? 16:56:00 marcosc: yes 16:56:04 ... primary case is 16:56:09 ... but yeah, we need to solve that 16:56:15 ... primary case was for packaged apps 16:56:18 s/manifest is loaded/manifest is not loaded/ 16:56:18 ... not super ideal 16:56:22 ... it's why it's sitting outside 16:56:24 jrossi has joined #webapps 16:56:27 ... the main UC is packaged 16:56:36 ... we need to consider those UCs more fully 16:56:47 JonathanJ3 has joined #webapps 16:56:47 ... PhoneGap uses this 16:56:49 [ Cordova ] 16:56:58 mounir: if we have more and more of this 16:57:06 ... this CSP thing 16:57:07 HZ_ has joined #webapps 16:57:14 ... it only works if you load the webapp from the manifest 16:57:18 ... in a packaged web app scenario 16:57:23 ... or FirefoxOS 16:57:29 ... but in normal web browsing scenario 16:57:38 ... but the spec is clear that you don't need the manifest 16:57:43 ... it has to be done lazily 16:57:51 ... which means the CSP rules aren't active 16:57:59 ... but if we have more UCs for eager loading of Manifest 16:58:01 q? 16:58:04 ... maybe we could make it happen 16:58:19 marcosc: we've been very careful to not put Manifest on the critical path for performance reasons 16:58:25 ack chaals 16:58:37 chaals: to kenneth_, we understand that for i18n, you could have horrible things 16:58:42 ... we have bilingual markets 16:58:49 ... Khazakhstan/Ukraine 16:58:56 Shige has joined #webapps 16:59:02 JonathanJ3 has joined #webapps 16:59:02 ... .ua, it would have Khazakh and Russian 16:59:12 JonathanJ3 has joined #webapps 16:59:18 marcosc: how does user today select preferred language? 16:59:26 chaals: button on page 16:59:37 marcosc: why not rewrite the page/url then? 16:59:47 ... this is part of a lazy load 16:59:53 ... by that point you've made your decision 16:59:59 kenneth_: maybe we should have spec text 17:00:11 marcosc: curious case of dynamically changing 17:00:19 ... if you kicked off a manifest load 17:00:24 ... and you change your link-rel 17:00:33 ... maybe you need to cancel the manifest and get a new one 17:00:37 -> https://github.com/w3c/manifest/issues/253 The curious case of the vanishing\mutating link element 17:00:42 ... I agree, but there are signals from user to web app 17:00:52 ... we have pressure from Mozilla 17:00:58 ... need to consider UCs 17:01:08 kenneth_: would it help to have base manifest + per language manifest? 17:01:14 chaals: sort of a pain in the butt 17:01:21 ... one model in the issue is a fairly lightweight approach 17:01:22 HZ_ has joined #webapps 17:01:24 ... names+icons 17:01:26 --- HTML 5 is a REC --- :) 17:01:28 ... lazily do it 17:01:42 ... do it only for locales 17:01:43 q? 17:01:59 ... having to do this as 2 lines is better than 6 17:01:59 tantek has joined #webapps 17:02:05 ... but thousands of lines will be bad 17:02:13 marcosc: requests i have is scope creep 17:02:17 ... but then define languages the app supports 17:02:22 ... then the data isn't complete 17:02:24 ... what does it mean 17:02:38 chaals: you don't need to list them, just look through the JSON 17:02:42 ... i'm arguing for a dual model 17:02:55 ... we have yandex.ua, yandex.kz, yandex.ru 17:02:56 q+ 17:03:02 ... they have the appropriate languages for those locales built in 17:03:13 ... we probably wouldn't include Turkish in the Ukrainian Manifest 17:03:24 kenneth_: can't you just generate the manifest? 17:03:28 ack sicking 17:03:45 sicking: i agree there's a need to be able to upload multiple languages in the same thing 17:03:54 ... i don't think we should solve client side localization for the web 17:03:57 ... in it 17:04:10 ... Mozilla has done complicated localization investigation 17:04:14 ... Plural 17:04:19 ... Gender 17:04:23 ... 2, 3 count 17:04:31 ... this becomes very hairy 17:04:31 q+ Kevin_Hill 17:04:42 ... we've researched for years 17:04:46 ... we've done localization for manifest 17:04:50 ... i don't know if it's used at all 17:04:57 ... it's so lacking in capabilities 17:05:08 mounir: why do you need that if you're just localizing the title 17:05:15 ... i assume it's just the fields in the app title 17:05:18 chaals: name and icon 17:05:24 ... no need for count/gender 17:05:38 ... marcosc says "please don't use the clunky FirefoxOS model" 17:05:51 ... i'm sympathetic to "let's not create the ultimate client localization thing in manifest" 17:05:57 sicking: is it worth doing something really crappy 17:06:06 ... i'd rather people work on how to do client side localization 17:06:12 ... i don't see w3c working on it 17:06:15 ... i'd love someone to do it 17:06:29 chaals: action sicking to write it up? 17:06:30 [ laughter ] 17:06:34 q? 17:06:36 ack Kevin_Hill 17:06:46 Kevin_Hill: for l10n discussion 17:06:53 ... I'd hate to see localizing the app 17:06:59 ... i could see localizing Offline 17:07:03 ... and basic fields 17:07:07 chaals: absolutely 17:07:13 ... i don't think anyone is suggesting that 17:07:20 ... other things you want feedback on? 17:07:29 ... or other feedback people want to give you? 17:07:32 marcosc: we need to 17:07:36 ... what we have here 17:07:39 ... doesn't let you define 17:07:49 ... all the things you need to make a web app you can take offline 17:07:53 ... / install locally 17:07:59 ... we need to have that discussion 17:08:03 ... we need the right people in the room 17:08:07 ... we need to work out scope issue 17:08:11 ... -- the biggest blocker 17:08:17 ... how it relates to ServiceWorkers (SW) 17:08:23 ... it lets you relate to homescreen 17:08:30 ... the bits that are there, it's pretty cool 17:08:35 ... Chrome/FirefoxOS 17:08:44 mounir: the next big thing is Scope/SW Scope 17:08:53 ... we need Manifest and SW define Scopes [compatibly] 17:09:01 ... maybe Manifest defines Scope and SW uses it 17:09:14 chaals: i agree modular i18n, it's nice/small/handy 17:09:19 ... let's try to get it shipped 17:09:25 ... before we boil the ocean 17:09:29 ... we can do that in v1.1 17:09:36 marcosc: we need to have these discussions 17:09:39 ... come talk to us this week 17:09:43 ... we have time 17:09:55 chaals: i'd invite you to talk to those guys directly 17:09:58 JonathanJ3 has joined #webapps 17:10:01 ... on our side, they're in Russia and Ukraine 17:10:06 marcosc: i put some ideas 17:10:07 just added my comments on loc to https://github.com/w3c/manifest/issues/211 17:10:12 ... worth having a look at that 17:10:17 chaals: any more on this? 17:10:18 q? 17:10:35 jsbell_ has joined #webapps 17:10:49 Topic: Permissions API 17:11:37 [ Break until 11am ] 17:11:42 -Olli_Pettay 17:12:31 [ chaals searches for a Chair ... since everyone with Chair experience is going to the AC meeting ] 17:12:42 Shige has joined #webapps 17:13:14 chaals: ok, marcosc will chair 17:13:45 -anssik 17:15:05 RRSAgent, draft mintues 17:15:05 I'm logging. I don't understand 'draft mintues', timeless. Try /msg RRSAgent help 17:15:10 RRSAgent, draft minutes 17:15:10 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html timeless 17:16:47 -Laszlo 17:19:45 Present+ Robin_Berjon, Ali_Alabbas, Benjamin_Poulain, Bryan_Sullivan, Dan_Appelquist, Ted_Oconnor, Joerg_Heuer, Marcos_Caceres, Mounir_Lamouri, Sam_Ruby, Shijun_Sun, Stephan_Steglich, Travis_Leithead, Kevin_Hill 17:19:51 RRSAgent, make minutes 17:19:51 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html ArtB 17:26:34 forty4 has joined #webapps 17:26:40 jrossi has joined #webapps 17:28:27 jcraig has joined #webapps 17:29:44 tomoyuki has joined #webapps 17:30:17 jhund_ has joined #webapps 17:35:06 hoyounkim has joined #webapps 17:35:54 hoyounkim has joined #webapps 17:39:42 kbx_ has joined #webapps 17:40:04 JonathanJ1 has joined #webapps 17:43:09 dka has joined #webapps 17:43:39 gludi|2 has joined #webapps 17:46:37 sam has joined #webapps 17:51:19 gludi|2 has joined #webapps 17:51:30 forty4 has joined #webapps 17:51:37 tomoyuki has joined #webapps 17:52:26 wooglae has joined #webapps 17:54:28 JonathanJ1 has joined #webapps 17:57:52 forty41 has joined #webapps 17:59:05 +Laszlo 18:00:56 +[IPcaller] 18:01:06 Zakim, [IPcaller] is Olli_Pettay 18:01:06 +Olli_Pettay; got it 18:01:14 Zakim, nick smaug is Olli_Pettay 18:01:14 ok, smaug, I now associate you with Olli_Pettay 18:01:24 jcraig has joined #webapps 18:02:30 fjh has joined #webapps 18:03:07 Cyril has joined #webapps 18:04:20 hiroki has joined #webapps 18:04:40 npdoty has joined #webapps 18:05:23 chaals has joined #webapps 18:07:33 +[IPcaller] 18:07:34 a12u has joined #webapps 18:07:36 zakim, [IPcaller] is me 18:07:36 +anssik; got it 18:08:11 scribe: Travis 18:08:16 scribeNick: Travis 18:08:36 Topic: Permissions API 18:08:37 Claes has joined #webapps 18:09:11 q? 18:09:27 http://lists.w3.org/Archives/Public/public-webapps/2014JulSep/0389.html 18:09:52 stone has joined #webapps 18:09:55 a1zu has joined #webapps 18:09:58 mounir: It is very simple. 18:10:11 ... whether to know if a site has access to a specific permission. 18:10:36 ... [describes the API shape] 18:11:07 ... Many API defintions require permission and try to abstract the permissions--creates a poor user experience. 18:11:16 ... many developers will try to find workarounds. 18:11:26 ... WebRTC is an example. 18:11:50 Cyril has joined #webapps 18:12:00 gludi|2 has joined #webapps 18:12:02 ... Abstracting permission status for website worked well when sites used new features but not often. 18:12:07 weinig has joined #webapps 18:12:08 Kevin_Hill has joined #webapps 18:12:21 jcdufourd has joined #webapps 18:12:23 hiroki has joined #webapps 18:12:25 ... now it's more common. Cite: hangouts needs WebRTC (it's required) 18:12:42 Zefa has joined #webapps 18:12:43 ... Issues: Should we have a specific permissions API or add permissions to every API that needs it. 18:13:10 gludi|2 has joined #webapps 18:13:21 tantek has joined #webapps 18:13:33 dom has joined #webapps 18:13:35 richt: If I've never been to the site, I don't know if I have permission (obviously). 18:13:47 ... if I just store something like a cookie, why isn't that sufficient? 18:13:52 mounir: That seems hacky. 18:14:03 sunghan has joined #webapps 18:14:05 Zakim, timeless has left Portland 18:14:05 -timeless; got it 18:14:09 ... There could be an issue if you inject adds. 18:14:33 ... They could just use your permission if they find your cookie. It's a security issue. 18:14:36 aizu has joined #webapps 18:14:40 richt: This can be solved... 18:14:51 GeunHyung has joined #webapps 18:15:09 mounir: you inject a script in your own origin. If you put your token in local storage they can just read it. 18:15:18 richt: any idea on how to solve the security issue. 18:15:35 marcosc: well, you know the effective script origin... you could block it. 18:15:59 ... on IOS it tells you if some app is using something in the background--you can detect and control it. 18:16:16 ... You could move it to the server, or try to prevent on the client. 18:16:36 richt: in GUM, I could just set a flag and read it when I come back... 18:16:57 marcosc: You should be able to clear permissions separately from cookies, etc. 18:16:59 gludi|2 has joined #webapps 18:17:19 mounir: Cookies is not really the right solution to the problem. 18:17:33 ... another solution is to sandbox the ad-injection. 18:17:34 q? 18:17:36 q? 18:17:59 marcosc: We talked a bit about use-cases. Was there an idea about being able to group permissions? 18:18:18 ... example: I need geo and camera access. How does that work. 18:18:19 ? 18:18:34 mounir: something that is planned: permissionchanged event. 18:18:40 gludi|2 has joined #webapps 18:18:47 ... there was a sec permission meeting in paris: they discussed this API 18:18:58 ... in WebRTC context, you don't have camera, but do have mic. 18:19:08 gludi|2 has joined #webapps 18:19:09 ... camera icon could be enabled/disabled based on permission status. 18:19:22 ... as soon as you are allowed to read permission status, you are allowed to track it. 18:19:39 mounir: Any implementer feedback? 18:19:52 sicking: I think this looks good 18:20:03 marcosc: any concern about this? 18:20:22 a12u has joined #webapps 18:20:36 sicking: no. It's syntax. It doesn't really matter where it lives. 18:20:51 ShijunS: Suggest take topic to WebRTC meeting for feedback 18:21:00 ... there is no "middle" layer in WebRTC 18:21:09 sicking: Well, that doesn't change anything... 18:21:28 ... site could add nav.permission.has('camera') and it would know whether it would succeed or not. 18:22:00 ... many sites want to be aware before the implementation would throw a permission prompt to the user. 18:22:52 ShijunS: Scenario: visit a page, then navigate back. It doesn't necessarily mean the user wants to automatically grant permission. 18:23:19 marcosc: What would you folks like to see? More than what we have here? 18:23:35 ShijunS: Can work through offline before talking to WebRTC. 18:24:15 mounir: I will circulate more widely. Web Apps may not take this (scope question). Perhaps it will go to webappsec? 18:24:36 ??: Would it apply to packaged apps? 18:24:49 mounir: packaged apps may be out-of-scope. 18:25:07 sicking: I see no reason why it wouldn't work. You can use this to ask for permission, just to check for position. 18:25:10 npdoty has joined #webapps 18:25:30 mounir: depends on how your packaged apps work. Perhaps you don't want to allow this for your packaged apps. 18:25:59 richt: Let's say I ask, and get a 'denied'. Now my app has to tell the user how enable permission (there's no way to be re-prompted) 18:26:03 seo has joined #webapps 18:26:13 glenn has joined #webapps 18:26:27 marcosc: If you could re-request it, that might work... 18:26:37 jhund has joined #webapps 18:26:57 Hyunjin has joined #webapps 18:27:05 mounir: Our data shows that people that deny really mean it. Otherwise they ignore it. 18:27:06 q+ 18:27:14 npdoty_ has joined #webapps 18:27:25 mounir: In many browsers, there's a third option (just ignore it) 18:27:43 richt: I'm talking about the iOS shortcut into the apps permission settings. 18:28:22 mounir: If you say no, it means no/never. This is a UA specific problem (about UX) 18:28:23 ... I expect it will change in the future. 18:28:31 richt: My point is that its very hard to undo a permission reject. 18:28:34 q? 18:28:38 ack adrianba 18:28:43 adrianba: I agree with Rich. I think that this is a problem. 18:29:02 ... If I visit a site, and wasn't expecting a prompt and now I click on no-never, then I'm stuck. 18:29:27 ... another example: facebook asking for location. But then I change my mind... how do I (as the developer) do that? 18:29:44 ... Does the app do the query? 18:30:05 rniwa has joined #webapps 18:30:15 q+ 18:30:17 ... Does the app have to have a database of the 1000's of mobile devices and show the user how to disable/enable. 18:30:46 ... Perhaps a time-based model--if you just asked 5 minutes ago, don't re-prompt, if its been a year, maybe re-ask. 18:31:29 ... the point of the API is to not show he prompt if its rejected. There's nothing for the UA to do here. 18:32:04 sicking: I also agree that this is a problem--not necessarily with this API. It's not in the 'has' request--it's in the asking (say in Geoloc.) 18:32:10 sicking proposes iReallyReallyMeanIt parameter 18:32:54 tantek_ has joined #webapps 18:33:01 mounir: I think Ade meant that with this API folks wouldn't even bother asking. Whereas before they might ask again because they wouldn't know. 18:33:12 ... I think we may be able to solve that problem later. 18:33:20 richt: 1st step: accept that there is a problem 18:33:26 igarashi has joined #webapps 18:33:51 mounir: Agree, it is a problem. I don't know the # of people who deny, but I think it's soo low, it's practically no one. 18:34:08 ... Basically, there's just one guy who presses deny. 18:34:21 ... it's not an even distribution. 18:34:34 richt: I also have some data (it's different than your data) 18:34:58 TNK has joined #webapps 18:34:58 mounir: 90% of folks are saying "i don't know" 18:35:19 ... adding something to Geolocation for "I really really need this permission"--> then everyone will use that! 18:35:29 ... now my problem is explaining how to undo that. 18:35:47 ... it would be great if users could access the permissions to review/change the permissions. 18:35:57 ... rather than having each UA explain the process. 18:36:52 mounir: I think it's a bad idea to have a way to access Chrome settings. 18:37:09 adrianba: I agree we don't have to do this immediately. 18:37:10 Cyril_ has joined #webapps 18:37:29 tantek has joined #webapps 18:37:44 ... Like Jonas' point, it's interesting to have the 'no I really need it' that could be called after a deny. 18:38:01 q+ 18:38:13 ... and if you did have such a centralized method, what would it do? Maybe taking the user to the settings would be OK? 18:38:48 StephanSteglich has joined #webapps 18:39:03 mounir: The 'i really mean it' means that they would ask for permission after they were denied, right? Seems not very useful at that point, because you have to trust the website... 18:39:32 sicking: You could treat the has() to a call to the underlying API... 18:39:47 Kevin_Hill: I'm probably that one guy clicking deny. 18:40:00 if we treat has() as a call to the API, that sounds a lot like the current situation (with geolocation at least), and has some advantages 18:40:04 ... If the site says it can't provide the experience. 18:40:15 ... The time factor is pretty important. 18:40:32 ... It's not a yes/no decision for all time. 18:40:44 q+ 18:40:59 mounir: I don't think the API is going against that. It's a decision the browser has to make for its user. 18:41:18 q? 18:41:40 ??: If I denied something, maybe I just want to be reminded that I denied and want to be reminded. 18:41:43 that's often how popup blockers work 18:41:48 s/??/Joannes/ 18:42:03 richt: Lots of browsers do provide that... icon next to the URL--but browsers all do this differently. 18:42:26 .. would be nice to point the user to the same place across devices. Can be done in a couple of clicks. 18:42:51 ack sicking 18:42:56 ack npdoty 18:43:00 npdoty: Came late... treating the has() call to a call to the underlying API. 18:43:06 kn1 has joined #webapps 18:43:28 ... current way this is done: by calling the geolocation directly and getting a callback. It's easier for the UA to decide based on heuristics. 18:43:45 ... at least for a while on iOS/Safari, it wouldn't deny forever; at least for 24 hours. 18:44:05 ... Another advantage: it requires some cost. It may have to show something to the user. 18:44:55 ... if you could determine whether someone else had asked, you could avoid the call. Many sites are conscious about being the source of a permission prompt. 18:45:30 marcosc: We could track the effective origin of the call to the permission access and make a decision based on that. 18:45:51 npdoty: It's been hard to do that tainting. 18:46:00 ... It's hard to be sure. 18:46:09 marcosc: next steps? 18:46:20 mounir: I started writing an official draft; not done yet, but soon. 18:46:43 ... need implemation feedback. We have some security issues. Clear Apple is not supporting. 18:46:44 mounir: because an embedded script can create a new script element on the page, and that script element will have the effective origin of the host page 18:47:12 ... in Chrome we are interested in implementing by EOY, but not shipping. We want something experimental and to know if it can ship next year. 18:47:29 q+ to remind about use cases 18:47:44 mounir: Finding a home for this is important. Probably webappsec. DAP also volunteered to host. 18:48:08 ack npdoty 18:48:08 npdoty, you wanted to remind about use cases 18:49:05 npdoty: If we could document the use cases (a concise list) of things we want to fix, and perhaps we can explore an alternate proposal? Seems like DAP had a permission spec a while ago... 18:49:35 link to DAP spec that i also helped to edit - http://dev.w3.org/2009/dap/perms/FeaturePermissions.html 18:49:36 mounir: Not a big fan of solving use cases one-by-one. Will create a mess. 18:50:23 ... we should definitely solve privacy issues. 18:50:54 npdoty: [not an expert] effective script origin is hard. 18:51:02 a12u has joined #webapps 18:51:05 Hyunjin has joined #webapps 18:51:46 mounir: The origin-mixing problem just makes it very hard to safely ask permissions. 18:52:24 marcosc: The tracking may not be a bad practice for some sites...they may want to collect this data! 18:52:36 jrossi has joined #webapps 18:52:47 yes, I would like if we could move away from ever embedding scripts from another origin in the same browsing context, but I think we're a long, long way from that 18:52:58 marcosc: The assumption that the web will be locked down by CSP may contradict some business goals. 18:53:27 that there are other security issues currently is not a reason to ignore new privacy/security issues we might introduce. 18:53:29 marcosc: Any final thoughts/comments? 18:53:32 ... no? 18:53:37 ... that's a wrap. 18:53:59 jcraig has joined #webapps 18:54:04 lunch break 18:54:20 -anssik 18:54:46 -Laszlo 18:58:14 kbx has joined #webapps 18:58:34 darobin has joined #webapps 19:00:18 weinig has joined #webapps 19:00:28 Cyril_ has joined #webapps 19:01:05 -Olli_Pettay 19:02:06 glenn has joined #webapps 19:03:28 marcosc has joined #webapps 19:04:53 forty4 has joined #webapps 19:07:54 jcraig_ has joined #webapps 19:08:53 adrianba has joined #webapps 19:10:15 zcorpan has joined #webapps 19:12:41 marcosc has joined #webapps 19:13:02 brendaneich has joined #webapps 19:16:54 s/adds/ads/ 19:17:24 s/IOS/iOS/ 19:24:17 igarashi has joined #webapps 19:24:37 dka has joined #webapps 19:37:28 Zefa has joined #webapps 19:44:33 glenn has joined #webapps 19:45:03 darobin has joined #webapps 19:57:41 glenn has joined #webapps 19:58:43 jrossi has joined #webapps 19:59:02 abarsto has joined #webapps 19:59:05 + +1.781.428.aabb 19:59:23 Zakim, where is 781? 19:59:23 North American dialing code 1.781 is Massachusetts 19:59:37 Zefa has joined #webapps 19:59:38 Zakim, aabb is lgombos 19:59:38 +lgombos; got it 19:59:54 Zakim, lgombos is Laszlo 19:59:54 +Laszlo; got it 20:00:50 jhund has joined #webapps 20:01:24 tomoyuki has joined #webapps 20:06:13 abarsto has joined #webapps 20:09:49 notbenjamin has joined #webapps 20:12:04 sam has joined #webapps 20:12:56 lgombos has joined #webapps 20:15:10 -Laszlo 20:15:16 Zefa has joined #webapps 20:16:43 myakura has joined #webapps 20:17:13 scribenick: ArtB 20:17:28 Topic: SysApps specifications 20:17:46 -> http://www.w3.org/2012/sysapps/#roadmap SysApps Spec Roadmap 20:18:16 +[IPcaller] 20:18:26 zakim, [IPcaller] is me 20:18:26 +anssik; got it 20:18:34 +[IPcaller] 20:18:47 Zakim, [IPcaller] is me 20:18:47 +lgombos; got it 20:19:30 rniwa has joined #webapps 20:19:32 zakim, who's here? 20:19:32 On the phone I see Portland, anssik, lgombos 20:19:33 Portland has chaals, ArtB, Yves, sicking 20:19:33 On IRC I see rniwa, myakura, Zefa, lgombos, sam, ArtB, tomoyuki, jhund, jrossi, glenn, darobin, gludi|2, chaals, jsbell_, spoussa_, jungkees, bkardell_, kenneth_, anssik, RRSAgent, 20:19:33 ... bryan, Zakim, smaug, kochi1, kochi, paul___irish, mihnea_____, MarkS, plinss, marcosc_, tyoshino, igrigorik, stryx`_, stryx`, MikeSmith, hober, slightlyoff, tobie, astearns, 20:19:34 ... cwilso, timeless, scheib, hayato_, krit, cabanier, jsbell, mkwst___, Domenic, FerasM__, dcooney___, pdr__, Hixie, richt, skddc, renoirb, krijnhoetmer, gavin, schuki, panzana` 20:19:55 sicking has joined #webapps 20:20:48 AB: this is informational session re SysApps WG 20:20:50 brendaneich has joined #webapps 20:21:11 MC: my personal observation is that most of SysApps specs are not progressing very well 20:21:19 npdoty has joined #webapps 20:21:27 … the group is starting the process of rechartering 20:21:45 … Mozilla is thinking about if it still wants to be part of SysApps 20:21:54 adrianba has joined #webapps 20:22:03 … We see value in at least 2 of SysApps' APIS 20:22:05 Claes has joined #webapps 20:22:07 Jingwang_Qi has joined #webapps 20:22:13 … Task Scheduler and TCP UDP Sockets 20:22:35 … We would like to test the water, so to speak, to see if these could fit into WebApps' charter 20:22:35 sicking_ has joined #webapps 20:22:43 ML: I agree with Marcos 20:22:55 … there is also Background Sync on GH 20:23:04 … I don't think that is within a WG yet 20:23:13 … but it is something to consider too 20:23:19 … so those 3 specs 20:23:34 JS: think Scheduler is a good fit 20:23:40 … not sure about Task Scheduler 20:23:55 … uses a security model that is not consistent with the Web 20:24:02 … thus I think that will be problematic 20:24:05 jcdufourd has joined #webapps 20:24:27 LG: Samsung is editor of Task Scheduler 20:24:33 … we recently made some updates 20:24:46 … part of the lack of progress is the Service Worker dependency 20:24:53 … but that is becoming resolved 20:24:54 jcraig has joined #webapps 20:25:03 … so I think Task Scheduler can now progress 20:25:16 … want it to progress regardless of where the spec "live" 20:25:19 forty4 has joined #webapps 20:25:22 … would like to get more feedback 20:25:35 q+ 20:25:58 kn1 has joined #webapps 20:26:15 AB: perhaps someone from SysApps can ask WebApps to review the specs? 20:26:35 CN: re the TCP UDP Sockets spec 20:26:54 … this API can't be exposed to any web site because of sensitivity 20:27:05 … the sec model can't be solved here 20:27:07 http://www.w3.org/2012/sysapps/tcp-udp-sockets/#security-and-privacy-considerations 20:27:13 … hosted web app sec model needs work 20:27:21 … to reuse the Web's security model 20:27:23 Louay has joined #webapps 20:27:43 … re the API itself, provides interfaces to UDP and TCP sockets 20:28:02 … within the last month I have re-written the spec to use WHATWG's Streams spec 20:28:12 … the API is now mostly complete 20:28:15 wooglae has joined #webapps 20:28:24 JonathanJ1 has joined #webapps 20:28:24 … still needs work on secure Web sockets 20:28:32 … need to also add support for TLS 20:28:34 q+ 20:28:56 SP: we have implemented quite a few of SysApps' specs 20:29:12 … mostly experimental in Tizen but also some Android versions too 20:29:35 … App URI implemented by us 20:30:10 MC: if we have >=2 impls, then by all means we should move them forward 20:30:24 … but if we don't should drop them 20:30:31 … we need to discuss this in SysApps 20:30:45 q+ 20:30:50 … for App URI the test suite is complete 20:31:02 q- 20:31:12 a12u has joined #webapps 20:31:31 CL: re SysApps deliverables, there is a Phase 1 list and a Phase 2 list 20:31:37 RRSAgent, make minutes 20:31:37 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html MikeSmith 20:31:52 … high on the priority list is Media Storage 20:31:59 kurosawa has joined #webapps 20:32:04 … we are implementing it on Chromium Android 20:32:16 … will ask SysApps this week to take that on 20:32:41 q+ to comment 20:32:44 ML: during SysApps' meeting, a topic is what could be moved to WebApps 20:33:04 q+ to gauge interest in moving some of the experimental SysApps work (that do not fit into WebApps' scope) back to the incubation phase into a "SysApps Community Group" 20:33:15 ack me 20:33:22 MS: I don't think Media Storage is web safe 20:33:46 … I think the only specs that could move to WebApps are those specs that use Web security model 20:34:31 … SysApps' original charter assumes Adam Barth was going to write Security Model spec for these classes of apps and a Runtime spec 20:34:40 … that didn't happen and isn't going to happen 20:35:00 q 20:35:01 … therefore, these specs would need to be refactored to fit into the Web sec model 20:35:13 … don't think we want to WGs specifying Web APIs 20:35:16 q? 20:35:28 JS: the Sockets API isn't clear how to expose to Web apps 20:35:46 … we learned alot, v-a-v FirefoxOS re runtime sec models 20:35:54 ack MikeSmith 20:35:54 MikeSmith, you wanted to comment 20:36:10 … want to make things as Web like as possible with only minor changes 20:36:15 … f.ex. some events 20:36:18 tantek has joined #webapps 20:36:27 … We don't want and diffs 20:36:48 … My hope is that what Adam had envisoned isn't actually needed 20:37:16 jcraig has joined #webapps 20:37:18 MS: unless there is a compelling reason, think all Web APIS should be moved to WebApps 20:37:31 MS: SysApps wants to drop specs 20:38:05 MC: for all specs with 2 or more impls, we want those to advance 20:38:16 wooglae1 has joined #webapps 20:38:33 AK: I want to poll people at the meeting about moving more experimental work back to the incubation phase 20:38:42 … WG is not appropriate place for incubation 20:38:59 … Is there interest in moving some of SysApps' specs in a less formal setting 20:39:03 … f.ex. a Comm Group 20:39:12 MC: that's already happening with Bluetooth 20:39:22 a1zu has joined #webapps 20:39:33 AK: true; but what about some others and is a new CG the best way 20:39:48 … if/when SysApps closes, useful bits should be redirected 20:39:56 MC: I think that should happen by market pressure 20:40:14 … don't want to create a CG unless there is some critical mass to move a spec forward 20:40:24 … that's what's happening with BT CG 20:40:35 AK: there could be some other specs to move 20:40:45 … and advance them 20:41:01 … if something has already been published, an issue is how to relicense the spec 20:41:07 Noriya has joined #webapps 20:41:13 … Chairs need to start discussions about those 20:41:22 MC: we also need to get Legal advice 20:41:27 ML: Chairs are OK to do that 20:41:41 AK: want to get the widest participation 20:41:46 fjh has joined #webapps 20:41:53 … Manifest was one that already moved to WebApps 20:42:04 … Could be some other candidates 20:42:18 … f.ex. Raw sockets and Task Scheduler could go the same way 20:42:18 q+ 20:42:21 q? 20:42:29 ack anssik 20:42:29 anssik, you wanted to gauge interest in moving some of the experimental SysApps work (that do not fit into WebApps' scope) back to the incubation phase into a "SysApps Community 20:42:33 ... Group" 20:42:45 zcorpan has joined #webapps 20:42:50 LG: we should not speculate here what SysApps will do 20:42:59 … but would be good to get some WebApps feedback 20:43:39 Cyril has joined #webapps 20:43:54 q? 20:44:21 AB: seems like SysApps should decide what it wants to move forward and then ask WebApps about their interest in taking them 20:44:25 LG: that sounds fine 20:44:32 ack lgombos 20:44:55 shepazu has joined #webapps 20:44:57 RRSAgent, make minutes 20:44:57 I have made the request to generate http://www.w3.org/2014/10/28-webapps-minutes.html ArtB 20:45:02 -anssik 20:45:45 dka has joined #webapps 20:46:35 tantek has joined #webapps 20:47:52 zcorpan_ has joined #webapps 20:48:03 Intersting URL Factoid 20:48:09 Will.i.am’s name is also a URL. 20:48:16 In the future, all names will also be URLs. 20:48:25 So we’d better get this right. 20:48:49 rniwa has joined #webapps 20:50:13 rubys has joined #webapps 20:50:18 hiroto has joined #webapps 20:50:18 https://tools.ietf.org/html/draft-ietf-appsawg-uri-scheme-reg-04 20:53:37 +[IPcaller] 20:53:57 Zakim, [IPcaller] is Olli_Pettay 20:53:57 +Olli_Pettay; got it 20:54:31 Zakim, nick smaug is Olli_Pettay 20:54:31 ok, smaug, I now associate you with Olli_Pettay 20:54:36 rniwa_ has joined #webapps 20:56:46 shepazutu has joined #webapps 20:58:39 marcosc has joined #webapps 21:02:09 jrossi has joined #webapps 21:02:26 Topic: URL 21:02:31 Travis has joined #webapps 21:02:32 scribe: Travis 21:02:35 ScribeNick: travis 21:02:37 scribeNick: Travis 21:02:43 Scribe+ ArtB, Travis 21:02:56 MikeSmith: We are gathered here together... to talk URL 21:02:59 youngwoojo has joined #webapps 21:03:02 arunranga has joined #webapps 21:03:19 Shige has joined #webapps 21:03:22 ... There was objection that URLs were being specified in HTML. 21:03:35 @brkadell_ looks like it’s just http. 21:03:35 ... Adam Barth wrote a draft in IETF then lost interest. 21:03:40 -> https://url.spec.whatwg.org/ WHAT WG URL spec 21:03:45 ... Larry become interested in an update to IRI 21:04:05 ... it was rechartered. They didn't make much progress [ correction] "nothing was done" (by me) 21:04:20 ... We still needed a spec for URLs. 21:04:35 ... Anne went ahead and wrote a spec for URLs 21:04:43 ... And now we're done. 21:04:48 ... Ok. Maybe not. 21:04:58 ... Some folks aren't happy with Anne's spec. 21:05:07 q? 21:05:11 ... Suggested we create a spec that we can be happy with. 21:05:36 ... rubys is taking a closer look at test results of URLs 21:05:46 rubys: Will be pasted some links 21:05:51 https://url.spec.whatwg.org/#url-writing 21:05:56 s/pasted/pasting 21:06:08 mnot has joined #webapps 21:06:17 weinig has joined #webapps 21:06:20 rubys: This is the living standard. A scheme must be registered... (not done) 21:06:28 relevant to the discussion, a TAG resolution taken on 1-october of this year on this topic: “We welcome present and future moves of the WHATWG to move toward a process which adheres to the openstand principles, and we note that in the case of URL spec, there has been a lot of cross talk, input from other groups, and a Bugzilla and GitHub-based process allows an openness to input which is valuable. In principle there is no barrier to W3C documents referencing WHATWG 21:06:29 documents normatively. In the specific case of URL being referenced from HTML5, we would prefer that the W3C HTML5 spec should reference the WHATWG URL specification and that between W3C and WHATWG we should continue to resolve any remaining technical and editorial issues in the spec.” 21:06:31 https://tools.ietf.org/html/draft-ietf-appsawg-uri-scheme-reg-04 21:06:35 ... It is obvious that more work needs to be done. 21:06:53 adrianba has joined #webapps 21:06:56 igarashi has joined #webapps 21:06:59 Louay has joined #webapps 21:07:06 ... This defines how you register new things. It references the work being done in URL and vice-versa. 21:07:15 stone has joined #webapps 21:07:23 ... Seems like they could link to one another. Progress? 21:07:52 q+ 21:07:59 Larry: Timing is right to review this new process document. 21:08:06 ... goal is to make it easier. 21:08:17 ... There is provisional and permanent. 21:08:26 ... Permanent is expert reivew 21:08:26 -> https://tools.ietf.org/html/draft-ietf-appsawg-uri-scheme-reg-04 Guidelines and Registration Procedures for URI Schemes 21:08:26 draft-ietf-appsawg-uri-scheme-reg-04 21:08:32 q? 21:08:33 ... Provision is more lenient 21:08:40 ... Time is right to look this over and review. 21:08:47 ack mnot 21:08:49 q? 21:09:11 markN: We talked about this back in London. 21:09:42 ... It appears a unanimous decision was not to have competing specs in WHATWG and W3C. 21:09:55 q? 21:09:59 ... Way forward was to use W3C process to move forward. 21:10:07 q+ 21:10:31 Dan: Resolution is specifically about URL and for this case. 21:10:44 ... It's being developed with good intentions by Anne. 21:10:52 npdoty has joined #webapps 21:11:12 ... We were happy to recommend the reference to the WHATWG spec. 21:11:30 ... I take issue with the W3C spec as a copy. I see it as a reprint. 21:11:50 marcosc: Director makes a decision and was part of the decision. 21:12:06 not using his director's hat 21:12:12 myakura has joined #webapps 21:12:14 rubys: I'm not interested in that discussion. I'm interested in the technical work. 21:12:24 ... I do want an opportunity to discuss the technical work 21:12:29 ack rubys 21:12:35 ... [clapping] 21:12:43 q+ Marcos, Larry