15:02:42 RRSAgent has joined #mediacap 15:02:42 logging to http://www.w3.org/2014/10/30-mediacap-irc 15:02:47 RRSAgent, this meeting spans midnight 15:03:11 RRSAgent, make log public 15:04:01 stefanh has joined #mediacap 15:04:33 Zakim, room for 8? 15:04:36 ok, dom; conference Team_(mediacap)15:04Z scheduled with code 26632 (CONF2) for 60 minutes until 1604Z; however, please note that capacity is now overbooked 15:04:44 Zakim, call portland 15:04:44 ok, dom; the call is being made 15:04:45 Team_(mediacap)15:04Z has now started 15:04:46 +Portland 15:05:14 Zakim, Portland is really TPAC 15:05:15 +TPAC; got it 15:07:05 burn has joined #mediacap 15:12:27 lol wut 15:12:28 :P 15:31:20 Domenic has joined #mediacap 15:31:29 Zakim, code? 15:31:30 the conference code is 26632 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), Domenic 15:32:21 Zakim, you lied to me 15:32:21 I don't understand 'you lied to me', Domenic 15:32:35 (hi everyone) 15:32:49 hi Domenic, thanks for joining! we're still getting set up here FWIW 15:32:58 ok, np. 15:33:54 npdoty has joined #mediacap 15:36:18 Topic: Welcome 15:36:32 hta: this is the media capture task force meeting as part of the WebRTC WG F2F 15:36:43 ... We're hoping to be at the stage where we stop making big changes to the document 15:36:55 jib has joined #mediacap 15:36:56 ... we need to review a last set of changes before we're sure we're done 15:37:13 +Domenic 15:37:32 shinwoo_ has joined #mediacap 15:38:14 ShijunS has joined #mediacap 15:38:34 mom: http://lists.w3.org/Archives/Public/public-media-capture/2014Oct/0186.html 15:38:42 shinwoo has joined #mediacap 15:38:48 stefanh: minutes approved 15:39:00 hta has joined #mediacap 15:39:10 Topic: Authenticated Origins 15:39:15 stefanh: this topic has been discussed in the task force before 15:39:20 ... it's been quite a heated debate 15:39:33 hta: we have a TAG representative on the phone 15:39:37 domenic: that would be me 15:40:18 ... work for Google, been elected to the TAG ~ a year ago 15:40:24 alexG has joined #mediacap 15:40:36 hta: we wanted someone from the TAG to get some keywords on why imposing that restriction might be a good idea 15:40:55 domenic: the TAG has made a statement that we should move sensitive APIs to authenticated origins over time 15:41:06 ... i.e. a deprecation plan for using getUserMedia on plain http 15:41:42 ekr: I don't find that analysis is uncompelling 15:42:53 ... the attacker can detour you from an unsecure origin 15:43:26 domenic: a more interesting technical question is whether this provides protection to the user 15:43:34 .... we've seen that it does 15:43:50 domenic: we think authenticated origin provide more protection against proven attacks. 15:43:59 scribenick: alexG 15:44:10 adam_ has joined #mediacap 15:44:12 i/Toipc: Welcome/ScribeNick: dom 15:44:18 i/Topic: Welcome/ScribeNick: dom 15:44:37 ekr: supposing that https is enough even if you connect to an attacker site is not going to work. 15:45:15 Cyril has joined #mediacap 15:45:23 eric_carlson has joined #mediacap 15:45:25 ekr: the problem is not asking GUM access over https 15:46:01 ekr: the problem is to know when you can trust, wether it is http / https 15:46:26 dominic: at least with https we can have alittl ebit more control and add red flags in the address bar. 15:46:38 it sounds like ekr is arguing that the user doesn't have any reason to trust the origin on http-only, but that it should be allowed in that case anyway 15:47:18 ekr: what is the way forward with this questions in the absence of specific use case one way or another? 15:47:28 domenic: i just wanted to convey the position of TAG, thank you 15:47:47 hta: this is a good overview of the disagreements today 15:47:52 mdadas has joined #mediacap 15:48:42 domenic: .... The specs should be consistent or it is not going to work. We should make things better for user down the path. nobody is proposing anything crazy, really. 15:49:00 hta: this is actually how the first message came across. that might be the reason of the ... strength .... of the reaction 15:49:08 domenic: i m happy i clarified this thing then. 15:49:35 adamR: justin, do you have comment on this conversation? 15:50:06 eric_carlson_ has joined #mediacap 15:50:14 it sounded to me like TAG was not suggesting a "flag day" 15:50:15 justin: chrome would like to move to more https in the future, but breaking existing content is not ok. We should have a multi year deprecation process, but having a flag day today is not going to happen. 15:50:34 ekr: couldn t we move ahead with GUM like it is today. 15:50:43 dom: i heard your point, ad i find it compeling 15:51:05 today, GUM is working on any origin, and there dis no compelling reason that we see to move away from that today. 15:51:55 domenic: the worse outcome would be for users to see that you guys are putting together specs without making sure we re looking forward the future, and just saying that s how we do it today, and so be it. We would like you guys to have a future direction statement. 15:52:00 GeunHyung has joined #mediacap 15:52:01 varun has joined #mediacap 15:52:12 ekr: what about a non normative note. 15:52:34 hta: what about a statement like " a conform ant browser might decide to make this available over https only." 15:52:44 that doesn't lend itself to interoperability 15:52:47 ekr: i thought it was the car, but if it s not, i d be happy to do it." 15:52:51 hta: let s make it the case. 15:52:55 s/might decide/MAY decide/ 15:53:02 matthew: source selection 15:53:17 dromasca has joined #mediacap 15:53:19 +1 15:53:38 domenic: someone brought the interop issue. one problem would be if one browser would work only over https, and another one would not, then call would not be established. 15:54:13 ekr: can we stop saying that people that don t want to go for https don t care about the users. 15:54:34 ekr: we have disagreement here, and let's agree to disagree. 15:54:38 eric_carlson_ has joined #mediacap 15:54:53 ekr: can we state that everybody wants to do what is right for the user, we just disagree about how to do it? 15:54:55 domenic: ok 15:55:10 matthew: i was observing that the GUM API as it stands might not have this property 15:55:27 matthew: but we are having other things in the spec that potentially change the profile, hum, usage of this thing. 15:56:05 getuserdevices has the possibility to enumerate devices and expose some things. it does not change the security profile, but give us the capacity to expose more or less informations that in turn influence the user decision 15:56:19 matthew: is there an opportunity there to use this ? 15:56:25 s/matthew/martin/ 15:56:33 ekr: my bad :) 15:57:07 dom: we have a rough agreement 15:57:14 ... that non normative note is good 15:57:24 domenic: yes, and i encourage that note to encourage https 15:57:34 hta: any volunteer to draft this note 15:57:45 ekr: i suggest that justin does it 15:58:04 hta: ekr has volunteered to do it, and requested help from justin. 15:58:31 hta: domenic thank you for having showed up, and enabled this discussion 15:58:33 mt has joined #mediacap 15:58:37 -Domenic 15:58:39 dom: we re happy for you to stay of course if you want 15:58:45 domenic: ok, good luck guys 15:59:06 Zakim, who's on the call? 15:59:06 On the phone I see TPAC 15:59:20 Topic: MediaStreamTrack.ended 15:59:31 jib: presenting mediastreamtrack.ended 15:59:43 jib: i m just going to show the problem 15:59:48 jib: present a solution 15:59:52 jib: and then we can speak about it 16:00:03 jib: JS arrow functions as an example 16:00:12 jib: 16:00:24 I'm also going to use promises 16:00:47 jib: here is background info and links 16:01:13 burn: and it will also be part of the specs 16:01:18 jib: 16:01:25 jib: we have this ended event 16:01:34 jib: the only thing it tells you is that the track has ended. 16:01:52 jib: two kind of problems 16:02:05 jib: call could have hanged up or dropped (which one?) 16:02:33 jib: GUM could have stop capturing, have had permission problem, or a driver issue (which one?) 16:02:39 jib: 16:02:51 jib: so I propose an ended promise 16:03:16 jib: allows to differentiate between two cases: success and failure 16:03:55 jib: consistent with usage of promises for state change 16:04:21 ekr: why not a "started" equivalent? 16:04:34 ekr: my point is that not all those events have state changes 16:05:11 jib: i m not proposing to replace the existing ones, i just want to show another way to get the errors and differentiate between several "types" of ended tracks 16:05:33 hta: history of the problem: can we tell the difference between a track that ended between an error or not 16:05:40 ekr: my concern is API consistency 16:05:56 burn: you did not say you suggested we should remove the original one 16:06:17 q? 16:06:21 ekr: that s then even worse if we don t remove: we have two APIs for the same things, and I don t know when to use which 16:06:32 sss(MS): 16:06:46 is it the right way to handle all the errors, from different objects 16:06:54 s/sss/ShijunSun/ 16:07:01 juberti has joined #mediacap 16:07:07 q+ 16:07:09 mt has joined #mediacap 16:07:25 jib: let s get to the second example 16:07:27 16:07:34 pthatcher has joined #mediacap 16:07:53 philcohen has joined #mediacap 16:07:55 Jun_MA_ has joined #mediacap 16:08:00 jib: in this example, I don't care if I succeeded, it is just showing the different syntaxes 16:08:17 jib: you can do a switch 16:08:51 jib: i did a pull request where I pull all the existing errors and show how this would look like. 16:09:00 disconnecting the lone participant, TPAC, in Team_(mediacap)15:04Z 16:09:02 Team_(mediacap)15:04Z has ended 16:09:02 Attendees were TPAC, Domenic 16:09:04 jib: here the error can happen upfront, or later on 16:09:18 jib: you just don t want to end up not catching an error 16:09:23 ack justin 16:09:37 jib: and there has been no other proposal that does all that so far. 16:10:10 juberti: i wouldn t like to use the excuse of having promises for GUM to use them everywhere else. 16:10:17 ekr: i agree with justin 16:10:18 fluffy has joined #mediacap 16:10:21 jib: does seem like ...... 16:10:35 shijunshun: +1 16:10:45 stefan: do we have the need for this? 16:10:51 ekr/juberti: yes 16:11:00 Ruinan_ has joined #mediacap 16:11:14 jib: you need to ale *some changes* 16:11:30 ekr/justin: yes 16:11:37 jib: then why not using prmises? 16:11:44 DanD has joined #mediacap 16:12:01 ekr: why not in this case, but not all events have that need, and we should note use promises everywhere because they are good for GUM. 16:12:08 jib: I hear the consistency argument 16:12:20 jib: there dis another pattern 16:12:31 jib: we should use the best language that solves the problem 16:12:38 ekr: i do not thing promises is that language 16:12:54 adam: events happen more than once 16:13:00 jib: ended only happens once 16:13:15 adam: yes, but for other events, it does not stand and promises should not be used. 16:13:16 promises for state transitions that happen only once and that people might be interested in after the fact are strictly better tha nevents 16:13:23 events are not appropriate for that case 16:13:24 ekr: it can t be all promises 16:13:30 and we have only used them because historically they were all we had 16:13:36 mt1 has joined #mediacap 16:14:02 fjh has joined #mediacap 16:14:19 juberti: we changed from having a consistent use of callbacks, and now we would have some promises and some callbacks, and I don t like that as it does not bring such added value. 16:14:32 Domenic, the argument that is being made is that mixing events and promises for handling events makes for a confusing API 16:14:35 you have to be looking for consistency among things that are alike 16:14:41 burn: we spend a lot of time defining which one should be event and which one should be callbacks 16:14:45 things that can jhappen more than once and things that happen once are not alike 16:14:58 well, both describe the object state machine 16:15:05 burn: and we spend a lot of time making sure that programmers could almost guess from the pattern when one should be used. 16:15:22 dom: we need a tech proposal. 16:15:25 dom: that's fair 16:15:29 ek: right, i m happy to write a proposal 16:15:41 hta: there is such a proposal in the bug that triggered that proposal 16:15:48 er: even better, i ll do nothing! 16:16:04 hta: there seems to be a rough consensus that we should extend events and not use promises. 16:16:16 jib: any other questions on this? 16:16:19 jib has joined #mediacap 16:16:21 jib: thank you 16:17:06 hta: we are now pretty ahead of schedule 16:17:14 alan-i has joined #mediacap 16:17:31 Topic: Audio output device enumeration 16:17:35 hta: let's have the audio output device enumeration discussion 16:19:06 -> https://www.w3.org/wiki/images/d/d6/Output_Device_Selection%2C_TPAC_2014.pdf Justin's slides 16:19:26 fjh_ has joined #mediacap 16:20:12 juberti: in addition to having enumeration of input device, we also have the same feature for OUTPUT devices but we have no way to access it. 16:20:26 juberti: why would we do that? #1 requested feature, before screensharing and others. 16:20:37 juberti: usage scenario 16:21:02 juberti: changing to usb or bluetooth headset 16:21:13 juberti: right now, haven to change the system settings 16:21:18 does "in chrome" mean "in the web page, not in browser chrome"? 16:21:26 16:21:57 juberti: no API for setting devices. 16:22:19 juberti: we have a way to enumerate them, but no way to SET them 16:22:24 why do we even have a way to enumerate output devices? 16:22:47 npdoty, this idea was to enable this use case 16:23:00 (even though we've been missing the last piece of that puzzle) 16:23:08 juberti: you want to avoid a few use case where arbitrary webpage cannot play content on your audio without user consent. 16:23:19 juberti: a prompt would not be practical 16:23:28 juberti: 16:23:50 juberti: for any mediaElement () would have an ID 16:24:06 juberti: by default, set to empty, and use default output (always OK, today;s case) 16:24:38 juberti: specific devices could deb set (unsung the enum API info) is application is authorized. web audio could also use it. 16:24:50 juberti: 16:25:22 juberti: most cases you could use the same group IS for input / output devices. 16:25:59 juberti: for other apps that would need finer granularity, there would be another way of doing this. 16:26:07 burn: permission is then for the group by default? 16:26:14 q+ to talk about where to spec this, coordination with other groups 16:26:15 juberti: exactly. 16:26:36 dan: would that show all permutations in the grouping? How do you define the grouping? 16:26:53 juberti: that s for composite device, they have the same device ID / group ID. 16:27:07 ekr: what would be the lifetime of the permission ? 16:27:14 juberti: same as GUM. 16:27:35 ekr: as long as origin is tagged, the permission stays. 16:28:28 martin: if you have persistent permission, it means yo have access to all device at any time. 16:28:47 juberti: yes, if you have access to all INPUT devices, and all OUTPUT devices are grouped with input device, that s true. 16:28:55 martin: I think we should make it explicit. 16:29:33 juberti: the coupling is quite elegant, and better than just using input devices. 16:29:42 martin: we don t need more prompt 16:29:52 q+ to ask if the cases are so often coupled, why does it need to be exposed at all? 16:30:21 q- later 16:30:34 indeed. why are we pushing this onto the page? 16:30:53 adam: even if I , as an application, have access to all the input device, i might not have access to all output devices? 16:31:10 for proper UX, npdoty (it's hard to build a nice user experience when everything is pushed to the browser chrome) 16:31:11 juberti: you can already enumerate all of them, you just can t use output device. 16:31:35 juberti: you know by using system permission, y ou already have practical access to all devices. 16:31:46 dom, the group thinks proper UX is more likely to happen if we distribute it out to every different web developer in the world 16:31:48 ? 16:32:00 juberti: i think that 99% will either use the default setting, or ONE specific coupling they will give permission to. 16:32:21 shijunshun: how to handle one the fly plugging in or plugging out devices 16:32:28 juberti: not sure yet. 16:32:29 npdoty, I think that's a correct characterization, yes 16:32:44 martin: .... 16:34:06 shijunshun: we have the notion of a default device, if anything is plugged in, the headphone has priority, and we fallback to default automatically. Now, it seems that webrtc would be a regression from what we propose today. 16:34:19 matrin: i know how to solve that problem i think 16:34:34 martin: there would be physical and logical devices 16:34:49 by using logical devices, then we can switch on the fly between physical devices. 16:35:20 shijunshun: does not have to be in the OS, could deb in IE. 16:35:20 q? 16:35:57 juberti: enumartion API should preset those so the user know which one to choose from 16:36:26 shijunshun: iframe might have different settings, so we have to be careful. 16:36:44 juberti: things working out of iframe would be an issue anyway, if only for PeerConnection. 16:37:52 shijunshun: my comment was more about the scope. do we want it restricted? do we want all page to control, including iframe, kind of overloading iframe settings? 16:37:58 hta: about usage, 16:38:08 hta: earlier in the week i was in the audio group 16:38:16 hta: and they are very interesting in using the same mechanism. 16:38:37 shujunshun: great, let's make sure the use case are all written. 16:38:45 burn: let s say you are in an iframe 16:39:11 burn: you can only set a device as output if you have permission to do, even though you could see it in the enum 16:39:31 juberti: well not exactly, i think we can enumerate all, but you only get access from grouping. 16:39:49 ack npdoty 16:39:49 npdoty, you wanted to ask if the cases are so often coupled, why does it need to be exposed at all? 16:39:55 q? 16:39:57 q+ philcohen 16:39:59 q- later 16:40:19 your assumption seems to be that the coupling is very frequent. It does not seems it need to be enumerated. and you re also adding a whole list of permission dialogs. 16:40:22 q+ ekr 16:40:22 q- later 16:40:26 juberti: this avoids permission dialog 16:40:42 juberti: having a generic API ...... 16:41:11 juberti: the API we have here announce that abstraction, but underneath we have to deal with another layer ... 16:41:14 q+ to ask about stored permission state when this topic is done 16:41:29 juberti: we have to deal with the cases where input and output are not a unique physical device. 16:42:00 : if the browser does not handle the setting, will the website allow me to do it. 16:42:10 martin: the site might have many things he wants to do at different point in time 16:42:27 martin: if you play music, you might want to keep rendering that music on the same device. 16:42:41 martin: but when you have a site that simultaneous plays music and communication 16:43:04 q? 16:43:05 martin: you don t really have today the flexibility to handle the user experience the way you want 16:43:08 ack philcohen 16:43:20 s//npdoty/ 16:43:21 ekr has joined #mediacap 16:43:30 q? 16:43:31 phil: many output devices in our case are not "grouped" with input device 16:43:33 q+ 16:43:43 and it s very important for us that the app should be able to use different devices. 16:44:00 wy has joined #mediacap 16:44:05 q- later burn 16:44:08 phil: another use case: my son is listening to radio with headset, while i m watching a movie locally on my coputer 16:44:10 q+ burn 16:44:11 computer 16:44:12 q- later 16:44:52 juberti: we did an app that is media mixing, kind of garage band. There is no input for app. If we are saying that permission only from GUM, .... 16:45:08 juberti: if you use a real pro audio app, you understand already the notion of door hanger 16:45:18 it sounds to me like we're suggesting that every page can choose non-coupled input/output (or maybe it won't have implemented it), which will cause more permission dialogs, but the user can also choose it separately on the browser 16:45:25 juberti: for most of web users, the permission is much simpler 16:45:25 q? 16:45:28 q+ 16:45:31 and if the user sets it in their browser first and then the site wants to change it? 16:45:44 juberti: but this API also gives us the capacity to use door hanger for more professional apps. 16:45:45 ack ekr 16:45:54 q+ DanD 16:45:58 q- 16:46:00 q- burn 16:46:05 and if the user asks where they're supposed to configure audio output? in the site or in the browser? or in the site first but maybe overridden in the browser? 16:46:25 ekr: do I understand that the goal is to allow a website to minimize the number of prompts for the most generic cases 16:46:29 juberti: yes 16:46:48 juberti: 90% would be: use the default or use that one specific set of devices. 16:46:55 fluffy: 16:47:02 jerome_ has joined #mediacap 16:47:02 I use the system microphone and the headset for sound 16:47:05 fluffy: the app would enumerate the devices 16:47:24 fluffy: the app would then ask permission for a specific device 16:47:37 q- 16:47:39 fluffy: the door hanger would then kick in, and the app would get access? 16:47:53 q+ philcohen 16:47:58 juberti: yes, or you have given persistent permission to that device beforehand and the door hanger would not even be needed 16:48:11 martin: is there a need for labels for groups ....? 16:48:21 martin: you said default and default group 16:48:48 q+ 16:48:52 juberti: .... 16:49:34 martin: the use case you mentioned is only for app that are already using this API 16:49:37 juberti: yes 16:49:49 martin: then they should be aware of this problem, and have an UI, and so on 16:49:57 ack mt 16:49:59 ack DanD 16:50:01 mt, because you think developers are unlikely to make mistakes about edge cases of hardware? 16:50:10 juberti: well, yes, but they could still make a bad choice. generally, the complexity is not transferred to the app. 16:50:12 dan: 16:50:34 dan: would it be good to be able to select audio/video only to simplify the list ? 16:50:48 s/audio/input 16:50:51 s/video/output 16:51:40 ack DanD 16:51:43 juberti: practicalities make it something we don t want. 16:51:50 q+ burn 16:52:14 phil: is there a way that JS know in advance which permission it has access to? 16:52:14 q+ to ask where to spec this, talk about coordination with other groups 16:52:17 juberti: yes 16:52:21 ack pthatcher 16:52:51 phil: some devices are also accessible, how do we populate the drop down with that? 16:52:53 ack philcohen 16:53:14 juberti: good point 16:53:40 juberti: how do we do for output device, what we do with the input device? .... that s a good question, i need to think about that. 16:54:25 phil: enumarate device might prompt once for allowing ALL devices to be used. so the enumerate API also allow them in one step. 16:54:38 juberti: yes , could do that, but it would be difficult to understand by users. 16:55:01 martin: 16:55:15 q+ 16:55:24 it would be a new permission model to say you get permission to things that are less egregious than any permissions you've already granted. 16:55:51 juberti/martin: discussion about how to do it right. 16:56:12 phil: just to clarify, i just want a way for the user to enable all the output device. 16:56:22 juberti: we might b something new to enable what you propose 16:56:52 ack burn 16:57:06 burn: the persistent permission implies access to all input devices 16:57:15 burn: and that surprises me 16:57:36 burn: 16:58:08 q? 16:58:27 burn: I'm realizing that we actually give permission to ALL devices, while I thought it would give permission for a specific device (the one i agree on in the prompt) 16:58:39 gludi|3 has joined #mediacap 16:58:57 q? 17:00:06 burn: the implementation consequences are minimal (at least in chrome), but for the user it s quite a shock, I was not personally aware that i was giving away that much 17:00:53 dom: we have to contact other groups for that discussion. e.g. web audio, HTMLMediaElement belongs to another group and so one and so forth. We need cross group coordination. 17:01:17 juberti: I think we need to document the attack scenario, and reach consensus at least within the group before we bring it to other groups. 17:01:30 gludi|4 has joined #mediacap 17:01:32 dom: my perspective is that we should drealy try to spec it 17:01:39 juberti: how do you do it? 17:01:46 dom: you do a partial interface ..... 17:01:53 ack me 17:01:53 dom, you wanted to ask where to spec this, talk about coordination with other groups 17:01:54 juberti: yes, that would be way more efficient 17:01:57 ack ekr 17:02:41 ekr: the problem i typically run into is when i am using the system microphone, with a non standard headset. 17:02:45 ekr ..... 17:02:55