W3C

File API

W3C Working Draft 20 October 2011

This Version:
http://www.w3.org/TR/2011/WD-FileAPI-20111020/
Latest Published Version:
http://www.w3.org/TR/FileAPI/
Latest Editor’s Draft:
http://dev.w3.org/2006/webapi/FileAPI/
Previous Version(s):
http://www.w3.org/TR/2010/WD-FileAPI-20101026/
Editors:
Arun Ranganathan, Mozilla Corporation <arun@mozilla.com>
Jonas Sicking, Mozilla Corporation <jonas@sicking.cc>

Abstract

This specification provides an API for representing file objects in web applications, as well as programmatically selecting them and accessing their data. This includes:

Additionally, this specification defines objects to be used within threaded web applications for the synchronous reading of files.

The section on Requirements and Use Cases [REQ] covers the motivation behind this specification.

This API is designed to be used in conjunction with other APIs and elements on the web platform, notably: XMLHttpRequest (e.g. with an overloaded send() method for File or Blob objects), postMessage, DataTransfer (part of the drag and drop API defined in [HTML,]) and Web Workers. Additionally, it should be possible to programmatically obtain a list of files from the input element when it is in the File Upload state[HTML]. These kinds of behaviors are defined in the appropriate affiliated specifications.

Status of this Document

This section describes the status of this document at the time of its publication. Other documents may supersede this document. A list of current W3C publications and the latest revision of this technical report can be found in the W3C technical reports index at http://www.w3.org/TR/.

This document is the 20 October 2011 Working Draft of the File API specification. Please send comments about this document to public-webapps@w3.org (archived).

Previous discussion of this specification has taken place on two other mailing lists: public-webapps@w3.org (archive) and public-webapi@w3.org (archive). Ongoing discussion will be on the public-webapps@w3.org mailing list.

This document is produced by the Web Applications WG in the W3C Interaction Domain.

Web content and browser developers are encouraged to review this draft. Please send comments to public-webapps@w3.org, the W3C's public email list for issues related to Web APIs. Archives of the list are available.

This document is produced by the Web Applications Working Group, part of the Rich Web Clients Activity in the W3C Interaction Domain. Changes made to this document can be found in the W3C public CVS server.

Publication as a Working Draft does not imply endorsement by the W3C Membership. This is a draft document and may be updated, replaced or obsoleted by other documents at any time. It is inappropriate to cite this document as other than work in progress.

This document was produced by a group operating under the 5 February 2004 W3C Patent Policy. W3C maintains a public list of any patent disclosures made in connection with the deliverables of the group; that page also includes instructions for disclosing a patent. An individual who has actual knowledge of a patent which the individual believes contains Essential Claim(s) must disclose the information in accordance with section 6 of the W3C Patent Policy.

Table of Contents

1. Introduction

This section is informative.

Web applications should have the ability to manipulate as wide as possible a range of user input, including files that a user may wish to upload to a remote server or manipulate inside a rich web application. This specification defines the basic representations for files, lists of files, errors raised by access to files, and programmatic ways to read files. Additionally, this specification also defines an interface that represents "raw data" which can be asynchronously processed on the main thread of conforming user agents. The interfaces and API defined in this specification can be used with other interfaces and APIs exposed to the web platform.

The File interface represents file data typically obtained from the underlying file system, and the Blob interface ("Binary Large Object" -- a name originally introduced to web APIs in Google Gears) represents immutable raw data. File or Blob reads should happen asynchronously on the main thread, with an optional synchronous API used within threaded web applications. An asynchronous API for reading files prevents blocking and UI "freezing" on a user agent's main thread. This specification defines an asynchronous API based on an event model to read and access a File or Blob's data. A FileReader object provides asynchronous read methods to access that file's data through event handler attributes and the firing of events. The use of events and event handlers allows separate code blocks the ability to monitor the progress of the read (which is particularly useful for remote drives or mounted drives, where file access performance may vary from local drives) and error conditions that may arise during reading of a file. An example will be illustrative.

Example

In the example below, different code blocks handle progress, error, and success conditions.

ECMAScript

function startRead() {  
  // obtain input element through DOM 
  
  var file = document.getElementById('file').files[0];
  if(file){
    getAsText(file);
  }
}

function getAsText(readFile) {
        
  var reader = new FileReader();
  
  // Read file into memory as UTF-16      
  reader.readAsText(readFile, "UTF-16");
  
  // Handle progress, success, and errors
  reader.onprogress = updateProgress;
  reader.onload = loaded;
  reader.onerror = errorHandler;
}

function updateProgress(evt) {
  if (evt.lengthComputable) {
    // evt.loaded and evt.total are ProgressEvent properties
    var loaded = (evt.loaded / evt.total);
    if (loaded < 1) {
      // Increase the prog bar length
      // style.width = (loaded * 200) + "px";
    }
  }
}

function loaded(evt) {  
  // Obtain the read file data    
  var fileString = evt.target.result;
  // Handle UTF-16 file dump
  if(utils.regexp.isChinese(fileString)) {
    //Chinese Characters + Name validation
  }
  else {
    // run other charset test
  }
  // xhr.send(fileString)     
}

function errorHandler(evt) {
  if(evt.target.error.name == "NOT_READABLE_ERR") {
    // The file could not be read
  }
}

2. Conformance

Everything in this specification is normative except for examples and sections marked as being informative.

The keywords “MUST”, “MUST NOT”, “REQUIRED”, “SHALL”, “SHALL NOT”, “RECOMMENDED”, “MAY” and “OPTIONAL” in this document are to be interpreted as described in Key words for use in RFCs to Indicate Requirement Levels [RFC2119].

The following conformance classes are defined by this specification:

conforming user agent

A user agent is considered to be a conforming user agent if it satisfies all of the MUST-, REQUIRED- and SHALL-level criteria in this specification that apply to implementations. This specification uses both the terms "conforming user agent" and "user agent" to refer to this product class.

User agents MAY implement algorithms in this specifications in any way desired, so long as the end result is indistinguishable from the result that would be obtained from the specification's algorithms.

User agents that use ECMAScript to implement the APIs defined in this specification MUST implement them in a manner consistent with the ECMAScript Bindings defined in the Web IDL specification [WEBIDL] as this specification uses that specification and terminology.

3. Dependencies

This specification relies on underlying specifications.

DOM

A conforming user agent MUST support at least the subset of the functionality defined in DOM Core that this specification relies upon; in particular, it must support EventTarget. [DOMCore]

Progress Events

A conforming user agent MUST support the Progress Events specification. Data access on read operations is enabled via Progress Events.[ProgressEvents]

HTML

A conforming user agent MUST support at least the subset of the functionality defined in HTML that this specification relies upon; in particular, it must support event loops and event handler attributes. [HTML]

Web IDL

A conforming user agent must also be a conforming implementation of the IDL fragments in this specification, as described in the Web IDL specification. [WebIDL]

Typed Arrays

A conforming user agent must support the Typed Arrays specification [TypedArrays].

Parts of this specification rely on the Web Workers specification; for those parts of this specification, the Web Workers specification is a normative dependency. [Workers]

4. Terminology and Algorithms

The terms and algorithms <fragment>, <scheme>, document, unloading document cleanup steps, event handler attributes, event handler event type, origin, same origin, event loops, task, task source, URL, and queue a task are defined by the HTML specification [HTML].

When this specification says to terminate an algorithm the user agent must terminate the algorithm after finishing the step it is on. Asynchronous read methods defined in this specification may return before the algorithm in question is terminated, and can be terminated by an abort() call.

The term throw in this specification, as it pertains to exceptions, is used as defined in the DOMCore specification [DOMCore].

The algorithms and steps in this specification use the following mathematical operations:

5. The FileList Interface

This interface is a collection [DOMCore] of File objects.

IDL

    interface FileList {
      getter File? item(unsigned long index);
      readonly attribute unsigned long length;
    };
    
Example

Sample usage typically involves DOM access to the <input type="file"> element within a form, and then accessing selected files.

ECMAScript

    // uploadData is a form element
    // fileChooser is input element of type 'file'
    var file = document.forms['uploadData']['fileChooser'].files[0];
    
    // alternative syntax can be
    // var file = document.forms['uploadData']['fileChooser'].files.item(0);
    
    if(file)
    {
      // Perform file ops
    }  
    

5.1. Attributes

length

MUST return the number of files in the FileList collection. If there are no files in the collection, this attribute MUST return 0.

5.2. Methods and Parameters

item(index)

MUST return the indexth File object in the FileList. If there is no indexth File object in the FileList, then this method must return null.

index MUST be treated by user agents as value for the position of a File object in the FileList collection, with 0 representing the first file in the collection. Supported property indices [WebIDL] are the numbers in the range zero to one less than the number of File objects represented by the collection [DOMCore]. If there are no such File objects, then there are no supported property indices [WebIDL].

Note
The HTMLInputElement interface [HTML] has a readonly attribute of type FileList, which is what is being accessed in the above example. Other interfaces with a readonly attribute of type FileList include the DataTransfer interface [HTML].

6. The Blob Interface

This interface represents immutable raw data. It provides a method to slice data objects between ranges of bytes into further chunks of raw data. It also provides an attribute representing the size of the chunk of data. The File interface inherits from this interface.

IDL

    interface Blob {
      
      readonly attribute unsigned long long size;
      readonly attribute DOMString type;
      
      //slice Blob into byte-ranged chunks
      
      Blob slice(optional long long start,
                 optional long long end,
                 optional DOMString contentType); 
    
    };
    

6.1. Attributes

size

Returns the size of the Blob object in bytes. On getting, conforming user agents MUST return the total number of bytes that can be read by a FileReader or FileReaderSync object, or 0 if the Blob has no bytes to be read.

type

The ASCII-encoded string in lower case representing the media type of the Blob, expressed as an RFC2046 MIME type [RFC2046]. On getting, conforming user agents SHOULD return the MIME type of the Blob, if it is known. If conforming user agents cannot determine the media type of the Blob, they MUST return the empty string. A string is a valid MIME type if it matches the media-type token defined in section 3.7 "Media Types" of RFC 2616 [HTTP].

Note

Use of the type attribute informs the encoding determination and parsing the Content-Type header when dereferencing blob: URIs.

6.2. Methods and Parameters

6.2.1. Parameters to slice

When this specification says to normalize parameters for the slice call, the following steps MUST be followed for the start, end, and contentType parameters, which are defined below.

The optional start parameter is a value for the start point of a slice call, and MUST be treated as a byte-order position, with the zeroth position representing the first byte. The following requirements are normative for this parameter, and user agents MUST process slice with start normalized according to the following:

  1. If the optional start parameter is not used as a parameter when making this call, let relativeStart be 0.

  2. If start is negative, let relativeStart be max((size + start), 0)).

  3. Else, let relativeStart be min(start, size).

  4. This defines the normalization of the start parameter. When processing the slice call, user agents must normalize start to relativeStart.

The optional end parameter is a value for the end point of a slice call. The following requirements are normative for this parameter, and user agents MUST process slice with end normalized according to the following:

  1. If the optional end parameter is not used as a parameter when making this call, let relativeEnd be size.

  2. If end is negative, let relativeEnd be max((size + end), 0)

  3. Else, let relativeEnd be min(end, size)

  4. This defines the normalization of the end parameter. When processing the slice call, user agents must normalize end to relativeEnd.

The optional contentType parameter is used to set a value identical to one that is set with the HTTP/1.1 Content-Type header [HTTP] on the Blob returned by the slice call. The following requirements are normative for this parameter, and user agents MUST process the slice with contentType normalized according to the following:

  1. If the contentType parameter is not provided, let relativeContentType be set to the empty string .

  2. If the contentType parameter is undefined, let relativeContentType be set to the empty string.

  3. Else let relativeContentType be set to contentType.

  4. This defines the normalization of the contentType parameter. When processing the slice call, user agents must normalize contentType to relativeContentType.

6.2.2. The slice method

The slice method returns a new Blob object with bytes ranging from the optional start parameter upto but not including the optional end parameter, and with a type attribute that is the value of the optional contentType parameter. It MUST act as follows :

  1. Let O be the Blob object on which the slice method is being called.

  2. Normalize the parameters start, end, and contentType to relativeStart, relativeEnd, and relativeContentType respectively.

  3. Let span be max((relativeEnd - relativeStart), 0).

  4. Return a new Blob object A with the following characteristics:

    1. A consists of span consecutive bytes from O, beginning with the byte at byte-order position relativeStart.

    2. A.size = span.

    3. A.type = relativeContentType.

Note

This note is informative. The slice method previously had different semantics, which differed from both Array.prototype.slice and String.prototype.slice [ECMA-262]. This difference was an oversight which has been corrected in this edition of the specification. Some user agents implemented the previous semantics, notably Firefox 4, Chrome 10, and Opera 11. These user agents have agreed to vendor-prefix their slice implementations in subsequent releases. A Blob slice operation occurs synchronously.

Example

The examples below illustrate the different types of slice calls possible. Since the File interface inherits from the Blob interface, examples are based on the use of the File interface.

ECMAScript

    // obtain input element through DOM
    
    var file = document.getElementById('file').files[0];
    if(file)
    {
      // create an identical copy of file
      // the two calls below are equivalent
      
      var fileClone = file.slice(); 
      var fileClone2 = file.slice(0, file.size);
      
      // slice file into 1/2 chunk starting at middle of file
      // Note the use of negative number
      
      var fileChunkFromEnd = file.slice(-(Math.round(file.size/2)));
      
      // slice file into 1/2 chunk starting at beginning of file
      
      var fileChunkFromStart = file.slice(0, Math.round(file.size/2));
      
      // slice file from beginning till 150 bytes before end
      
      var fileNoMetadata = file.slice(0, -150, "application/experimental");      
    }
    

7. The File Interface

This interface describes a single file in a FileList and exposes its name. It inherits from Blob.

IDL

	  interface File : Blob {

	      readonly attribute DOMString name;
	      readonly attribute Date lastModifiedDate;
	};
	  

7.1. Attributes

name

The name of the file; on getting, this MUST return the name of the file as a string. There are numerous file name variations on different systems; this is merely the name of the file, without path information. On getting, if user agents cannot make this information available, they MUST return the empty string.

lastModifiedDate

The last modified date of the file. On getting, if user agents can make this information available, this MUST return a new Date[HTML] object initialized to the last modified date of the file; otherwise, this MUST return null.

Note

The File interface is available on objects that expose an attribute of type FileList; these objects are defined in HTML [HTML]. The File interface, which inherits from Blob, is immutable, and thus represents file data that can be read into memory at the time a read operation is initiated. User agents MUST process reads on files that no longer exist at the time of read as errors, throwing a NotFoundError exception if using a FileReaderSync on a Web Worker [Workers] or firing an error event with the error attribute returning a NotFoundError DOMError.

8. The FileReader Interface

This interface provides methods to read File objects or Blob objects into memory, and to access the data from those Files or Blobs using progress events and event handler attributes; it inherits from EventTarget [DOMCore]. It is desirable to read data from file systems asynchronously in the main thread of user agents. This interface provides such an asynchronous API, and is specified to be used with the global object (Window [HTML]).

IDL


	[Constructor]
	interface FileReader: EventTarget {

	  // async read methods
	  void readAsArrayBuffer(Blob blob);
	  void readAsBinaryString(Blob blob);
	  void readAsText(Blob blob, optional DOMString encoding);
	  void readAsDataURL(Blob blob);

	  void abort();

	  // states
	  const unsigned short EMPTY = 0;
	  const unsigned short LOADING = 1;
	  const unsigned short DONE = 2;


	  readonly attribute unsigned short readyState;

	  // File or Blob data
	  readonly attribute any result;

	  readonly attribute DOMError error;

	  // event handler attributes
	  attribute [TreatNonCallableAsNull] Function? onloadstart;
	  attribute [TreatNonCallableAsNull] Function? onprogress;
	  attribute [TreatNonCallableAsNull] Function? onload;
	  attribute [TreatNonCallableAsNull] Function? onabort;
	  attribute [TreatNonCallableAsNull] Function? onerror;
	  attribute [TreatNonCallableAsNull] Function? onloadend;

	};
	  

8.1. The FileReader Task Source

The FileReader interface enables asynchronous reads on individual Blob objects by firing progress events as the read occurs to event handler methods on the FileReader, which is an EventTarget [DOMCore]. Unless stated otherwise, the task source that is used in this specification is the FileReader. This task source is used for events that are asynchronously fired, and for event tasks that are queued for firing, and for the read methods, which queue tasks to update the result.

8.2. Constructors

When the FileReader() constructor is invoked, the user agent MUST return a new FileReader object.

In environments where the global object is represented by a Window or a WorkerGlobalScope object, the FileReader constructor MUST be available.

8.3. Event Handler Attributes

The following are the event handler attributes (and their corresponding event handler event types) that user agents MUST support on FileReader as DOM attributes:

event handler attribute event handler event type
onloadstart loadstart
onprogress progress
onabort abort
onerror error
onload load
onloadend loadend

8.4. FileReader States

The FileReader object can be in one of 3 states. The readyState attribute, on getting, MUST return the current state, which MUST be one of the following values:

EMPTY (numeric value 0)

The FileReader object has been constructed, and there are no pending reads. None of the read methods have been called. This is the default state of a newly minted FileReader object, until one of the read methods have been called on it.

LOADING (numeric value 1)

A File or Blob is being read. One of the read methods is being processed, and no error has occurred during the read.

DONE (numeric value 2)

The entire File or Blob has been read into memory, OR a file error occurred during read, OR the read was aborted using abort(). The FileReader is no longer reading a File or Blob. If readyState is set to DONE it means at least one of the read methods have been called on this FileReader.

8.5. Reading a File or Blob

8.5.1. Multiple Reads

The FileReader interface makes available four asynchronous read methods -- readAsArrayBuffer, readAsBinaryString, readAsText, and readAsDataURL, which read files into memory. If multiple concurrent read methods are called on the same FileReader object, user agents MUST throw an InvalidStateError [DOMCore] on any of the read methods that occur when readyState = LOADING.

8.5.2. The result attribute

On getting, the result attribute returns a Blob's data as a DOMString, or as an ArrayBuffer [TypedArrays], or null, depending on the read method that has been called on the FileReader, and any errors that may have occurred. It can also return partial Blob data. Partial Blob data is the part of the File or Blob that has been read into memory currently; when processing the read methods readAsBinaryString or readAsText, partial Blob data is a DOMString that is incremented as more bytes are loaded (a portion of the total) [ProgressEvents], and when processing readAsArrayBuffer partial Blob data is an ArrayBuffer [TypedArrays] object consisting of the bytes loaded so far (a portion of the total)[ProgressEvents]. The list below is normative for the result attribute and is the conformance criteria for this attribute:

  • On getting, if the readyState is EMPTY (no read method has been called) then the result attribute MUST return null.

  • On getting, if an error in reading the File or Blob has occurred (using any read method), then the result attribute MUST return null.

  • On getting, if the readAsDataURL read method is used, the result attribute MUST return a DOMString that is a Data URL [DataURL] encoding of the File or Blob's data.

  • On getting, if the readAsBinaryString read method is called and no error in reading the File or Blob has occurred, then the result attribute MUST return a DOMString representing the File or Blob's data as a binary string, in which every byte is represented by an integer in the range [0..255]. On getting, while processing the readAsBinaryString read method, the result attribute SHOULD return partial Blob data in binary string format as a DOMString that is incremented as more data is read. User agents MUST return at least one such result, with the final result returned at completion of the read.

  • On getting, if the readAsText read method is called and no error in reading the File or Blob has occurred, then the result attribute MUST return a string representing the File or Blob's data as a text string, and SHOULD decode the string into memory in the format specified by the encoding determination. On getting, while processing the readAsText read method, this attibute SHOULD return partial Blob data in the format specified by the encoding determination as a DOMString that is incremented as more data is read. User agents MUST return at least one such result, with the final result returned at completion of the read. See the caveat about partial Blob data being valid within a giving encoding.

  • On getting, if the readAsArrayBuffer read method is called and no error in reading the File or Blob has occurred, then the result attribute MUST return an ArrayBuffer [TypedArrays] object. On getting, while processing the readAsArrayBuffer read method, the result attribute SHOULD return partial Blob data as an ArrayBuffer [TypedArrays]. User agents MUST return at least one such result, with the final result returned at completion of the read.

Note

If a read is successful, the result attribute MUST return a non-null value only after a progress event (see also [ProgressEvents]) has fired, since all the read methods access Blob data asynchronously. Tasks are queued to update the result attribute as Blob data is made available.

8.5.3. The readAsBinaryString(blob) method

When the readAsBinaryString(blob) method is called, the user agent MUST run the steps below (unless otherwise indicated).

  1. If readyState = LOADING throw an InvalidStateError exception [DOMCore] and terminate this algorithm.

    Note: The readAsBinaryString() method returns due to the algorithm being terminated.

  2. If an error occurs during reading of the blob parameter, set readyState to DONE and set result to null. Proceed to the error steps below.

    1. Fire a progress event called error. Set the error attribute; on getting, the error attribute MUST be a a DOMError object that indicates the kind of file error that has occurred.

    2. Fire a progress event called loadend.

    3. Terminate this algorithm.

      Note: The readAsBinaryString() method returns due to the algorithm being terminated.

  3. If no error has occurred, set readyState to LOADING

  4. Fire a progress event called loadstart.

  5. Return the readAsBinaryString() method, but continue processing the other steps in this algorithm.

  6. Make progress notifications.

  7. While processing the read, as data from blob becomes available, user agents SHOULD queue tasks to update the result with partial Blob data represented as a binary string to accompany the firing of progress events until the read is complete. On getting, the result attribute returns partial Blob data representing the number of bytes currently loaded (as a fraction of the total) [ProgressEvents], as a binary string; user agents MUST return at least one such result while processing this read method. The last returned value is at completion of the read.

  8. When the blob has been read into memory fully, set readyState to DONE

  9. Terminate this algorithm.

Note

Note: the readAsBinaryString(blob) method should be considered deprecated; user agents should consider supporting the readAsArrayBuffer(blob) method instead of readAsBinaryString(blob).

8.5.4. The readAsDataURL(blob) method

When the readAsDataURL(blob) method is called, the user agent MUST run the steps below (unless otherwise indicated).

  1. If readyState = LOADING throw an InvalidStateError exception [DOMCore] and terminate this algorithm.

    Note: The readAsDataURL() method returns due to the algorithm being terminated.

  2. If an error occurs during reading of the blob parameter, OR if a user agent's URL length limitations prevent returning data as a Data URL [DataURL], set readyState to DONE and set result to null. Proceed to the error steps below.

    1. Fire a progress event called error. Set the error attribute; on getting, the error attribute MUST be a a DOMError object that indicates the kind of file error that has occurred.

    2. Fire a progress event called loadend.

    3. Terminate this algorithm.

      Note: The readAsDataURL() method returns due to the algorithm being terminated.

  3. If no error has occurred, set readyState to LOADING

  4. Fire a progress event called loadstart.

  5. Return the readAsDataURL() method, but continue to process the steps in this algorithm.

  6. Fire a progress event called progress at completion of the read.

  7. Queue a task to update the result attribute with the blob as a DataURL [DataURL] after it has been fully read into memory; on getting, the result attribute returns the (complete) data of blob as a Data URL [DataURL].

    • Use the blob's type attribute as part of the Data URL if it is available in keeping with the Data URL specification [DataURL] .
    • If the type attribute is not available on the blob return a Data URL without a media-type. [DataURL].
      Note

      Data URLs that do not have media-types [RFC2046] MUST be treated as plain text by conforming user agents. [DataURL].

  8. Set readyState to DONE

  9. Fire a progress event called load.

  10. Fire a progress event called loadend.

  11. Terminate this algorithm.

8.5.5. The readAsText(blob, encoding) method

When the readAsText(blob, encoding) method is called (the encoding argument is optional), the user agent MUST run the steps below (unless otherwise indicated).

  1. If readyState = LOADING throw an InvalidStateError [DOMCore] and terminate these steps.

    Note: The readAsText() method returns due to the algorithm being terminated.

  2. If an error occurs during reading the blob parameter, set readyState to DONE and set result to null. Proceed to the error steps below.

    1. Fire a progress event called error. Set the error attribute; on getting, the error attribute MUST be a a DOMError object that indicates the kind of file error that has occurred.

    2. Fire a progress event called loadend.

    3. Terminate this algorithm.

      Note: The readAsText() method returns due to the algorithm being terminated.

  3. If no error has occurred, set readyState to LOADING

  4. Fire a progress event called loadstart.

  5. Return the readAsText() method, but continue to process the steps in this algorithm

  6. Make progress notifications.

  7. While processing the read, as data from the blob becomes available, user agents SHOULD queue tasks to update the result with partial Blob data represented as a string in a format determined by the encoding determination until the read is complete, to accompany the firing of progress events. On getting, the result attribute returns partial Blob data representing the number of bytes currently loaded (as a fraction of the total) [ProgressEvents], decoded into memory according to the encoding determination; user agents MUST return at least one such result while processing this read method. The last returned value is at completion of the read.

    Note

    Partial Blob data MUST be returned such that where possible, the bytes read thus far should be valid code points within the encoding; in particular, when executing the encoding determination for Partial Blob data, user agents MUST NOT return the U+FFFD character for bytes that are invalid within an encoding till the entire codepoint has been read. For example:

    Suppose a file resource is to be read in UTF-8, and in hexadecimal the bytes in this file are E3 83 91 E3 83 91, which is effectively 0x30D1 0x30D1. Suppose the first 5 bytes have been read. The result returned here MUST be 0x30D1 and have result.length == 1 , and NOT be 0x30D1 0xFFFD with result.length == 2 . Even though the trailing E3 83 is not a valid code point in UTF-8 at the fifth byte, user agents MUST NOT return a result with such invalid code points replaced with U+FFFD till it can be determined definitively that the codepoint is invalid.

  8. When the blob has been read into memory fully, set readyState to DONE

  9. Terminate this algorithm.

8.5.6. The readAsArrayBuffer(blob) method

When the readAsArrayBuffer(blob) method is called, the user agent MUST run the steps below (unless otherwise indicated).

  1. If readyState = LOADING throw an InvalidStateError exception [DOMCore] and terminate these steps.

    Note: The readAsArrayBuffer() method returns due to the algorithm being terminated.

  2. If an error occurs during reading the blob parameter, set readyState to DONE and set result to null. Proceed to the error steps below.

    1. Fire a progress event called error. Set the error attribute; on getting, the error attribute MUST be a a DOMError that indicates the kind of file error that has occurred.

    2. Fire a progress event called loadend.

    3. Terminate this algorithm.

      Note: The readAsArrayBuffer() method returns due to the algorithm being terminated.

  3. If no error has occurred, set readyState to LOADING

  4. Fire a progress event called loadstart.

  5. Return the readAsArrayBuffer() method, but continue to process the steps in this algorithm.

  6. Make progress notifications.

  7. While processing the read, as data from the blob becomes available, user agents SHOULD queue tasks to update the result with partial Blob data as an ArrayBuffer [TypedArrays] object containing the bytes read until the read is complete, to accompany the firing of progress events. On getting, the result attribute returns partial Blob data representing the number of bytes currently loaded (as a fraction of the total) [ProgressEvents], as an ArrayBuffer [TypedArrays] object; user agents MUST return at least one such ArrayBuffer [TypedArrays] while processing this read method. The last returned value is at completion of the read.

  8. When the blob has been read into memory fully, set readyState to DONE

  9. Terminate this algorithm.

8.5.7. The abort() method

When the abort() method is called, the user agent MUST run the steps below:

  1. If readyState = EMPTY or if readyState = DONE set result to null and terminate this overall set of steps without doing anything else.

  2. If readyState = LOADING set readyState to DONE and result to null.

  3. If there are any tasks from the object's FileReader task source in one of the task queues, then remove those tasks.

  4. Terminate any steps while processing a read method.

  5. Fire a progress event called abort

  6. Fire a progress event called loadend

  7. Terminate this algorithm.

8.5.8. Blob Parameters

Many methods in this specification take mandatory Blob parameters.

blob

This is a Blob argument used to call all four asynchronous read methods on FileReader and all four synchronous read methods on FileReaderSync; it is also used to call the createObjectURL method. This argument MUST be a reference to a single File in a FileList or a Blob object not obtained from the file system that is in scope of the global object from which the method call was made.

8.5.9. Determining Encoding

When reading blob objects using the readAsText() read method, the optional encoding string parameter MUST be a name or an alias of a character set used on the Internet [IANACHARSET], or else is considered invalid. The following encoding determination steps MUST be followed:

  1. Decode the blob using the encoding parameter, if provided and if valid, and terminate this set of steps. If invalid, or if not provided, or if the user agent cannot determine the encoding, go to the next step.

  2. Decode the blob using the Charset Parameter [RFC2046] of the blob argument's type attribute, if it has one. If it does not have one, or if the one provided is not a character set used on the Internet [IANACHARSET], go to the next step.

    Example

    If a given blob has a type attribute of text/plain;charset=UTF-8 then decode the blob using UTF-8.

  3. Let charset be null.

  4. For each of the rows in the following table, starting with the first one and going down, if the first bytes of blob match the bytes given in the first column, then let charset be the encoding given in the cell in the second column of that row. If there is no match charset remains null.

    Bytes in Hexadecimal Description
    FE FF UTF-16BE BOM
    FF FE UTF-16LE BOM
    EF BB BF UTF-8 BOM
  5. If charset is null let charset be UTF-8.

  6. Return the result of decoding the blob using charset; on getting, the result attribute of the FileReader object returns a string in charset format. The synchronous readAsText method of the FileReaderSync object returns a string in charset format. Replace bytes or sequences of bytes that are not valid according to the charset with a single U+FFFD character [Unicode]. When processing Partial Blob Data, use the encoding caveat, if applicable.

8.5.10. Events

When this specification says to make progress notifications for a read method, the following steps MUST be followed:

  1. While the read method is processing, queue a task to fire a progress event called progress at the FileReader object about every 50ms or for every byte read into memory, whichever is least frequent. At least one event called progress MUST fire before load is fired, and at 100% completion of the read operation; if 100% of blob can be read into memory in less than 50ms, user agents MUST fire a progress event called progress at completion.

    Example

    If a given implementation uses buffers of size 65536 bytes to read files, and thus limits reading operations to that size, and a read method is called on a file that is 65537 bytes, then that implementation MUST fire one progress event for the 65536 first bytes, one progress event for the 65537th byte (which is at completion of read), one load event and one loadend event.

  2. When the data from the blob has been completely read into memory, queue a task to fire a progress event called load at the FileReader object.

  3. When the data from the blob has been completely read into memory, queue a task to fire a progress event called loadend at the FileReader object.

When this specification says to fire a progress event called e (for some ProgressEvent e at a FileReader reader), the following are normative:

  • The progress event e does not bubble. e.bubbles MUST be false [DOMCore]

  • The progress event e is NOT cancelable. e.cancelable MUST be false [DOMCore]

  • The term "fire an event" is defined in DOM Core [DOMCore]. Progress Events are defined in Progress Events [ProgressEvents].

8.5.10.1. Event Summary

The following are the events that are fired at FileReader objects; firing events is defined in DOM Core [DOMCore], and the table below is normative for the events in this specification.

Event name Interface Fired when…
loadstart ProgressEvent When the read starts.
progress ProgressEvent While reading (and decoding) blob, and reporting partial Blob data (progess.loaded/progress.total)
abort ProgressEvent When the read has been aborted. For instance, by invoking the abort() method.
error ProgressEvent When the read has failed (see errors).
load ProgressEvent When the read has successfully completed.
loadend ProgressEvent When the request has completed (either in success or failure).
8.5.10.2. Summary of Event Invariants

The following are normative invariants applicable to event firing for a given asynchronous read method in this specification:

  1. Once a loadstart has been fired, a corresponding loadend fires at completion of the read, EXCEPT if the read method has been cancelled using abort() and a new read method has been invoked.

    Note
    The events loadstart and loadend are not coupled in a one-to-one manner.
  2. One progress event will fire when blob has been completely read into memory.

  3. No progress event fires before loadstart.

  4. No progress event fires after abort, load, and loadend have fired.

  5. No abort, load, or error event fires after loadend.

9. Reading on Threads

Web Workers allow for the use of synchronous File or Blob read APIs, since such reads on threads do not block the main thread. This section defines a synchronous API, which can be used within Workers [Web Workers]. Workers can avail of both the asynchronous API (the FileReader object) and the synchronous API (the FileReaderSync object).

9.1. The FileReaderSync Interface

This interface provides methods to synchronously read File or Blob objects into memory.

IDL


	[Constructor]
	interface FileReaderSync {

	  // Synchronously return strings

	  ArrayBuffer readAsArrayBuffer(Blob blob);
	  DOMString readAsBinaryString(Blob blob); 
	  DOMString readAsText(Blob blob, optional DOMString encoding);
	  DOMString readAsDataURL(Blob blob);
	};
	

9.1.1. Constructors

When the FileReaderSync() constructor is invoked, the user agent MUST return a new FileReaderSync object.

In environments where the global object is represented by a WorkerGlobalScope object, the FileReaderSync constructor MUST be available.

9.1.2. The readAsBinaryString method

When the readAsBinaryString(blob) method is called, the following steps MUST be followed:

  1. If an error occurs during reading the blob parameter, throw the appropriate exception. Terminate these overall steps.

  2. If no error has occurred, read blob into memory. Return the data contents of blob as a binary string.

Note

Note: the readAsBinaryString(blob) method should be considered deprecated; user agents should consider supporting the readAsArrayBuffer(blob) method instead of readAsBinaryString(blob)

9.1.3. The readAsText method

When the readAsText(blob, encoding) method is called (the encoding argument is optional), the following steps MUST be followed:

  1. If an error occurs during reading of the blob parameter, throw the appropriate exception. Terminate these overall steps.

  2. If no error has occurred, read blob into memory. Return the data contents of blob using the encoding determination algorithm.

9.1.4. The readAsDataURL method

When the readAsDataURL(blob) method is called, the following steps MUST be followed:

  1. If an error occurs during reading of the blob parameter, throw the appropriate exception. Terminate these overall steps.

  2. If no error has occurred, read blob into memory. Return the data contents of blob as a Data URL [DataURL]

    • Use the blob's type attribute as part of the Data URL if it is available in keeping with the Data URL specification [DataURL] .
    • If the type attribute is not available on the blob return a Data URL without a media-type. [DataURL].
      Note

      Data URLs that do not have media-types [RFC2046] MUST be treated as plain text by conforming user agents. [DataURL].

9.1.5. The readAsArrayBuffer method

When the readAsArrayBuffer(blob) method is called, the following steps MUST be followed:

  1. If an error occurs during reading the blob parameter, throw the appropriate exception. Terminate these overall steps.

  2. If no error has occurred, read blob into memory. Return the data contents of blob as an ArrayBuffer [TypedArrays]

10. Errors and Exceptions

Error conditions can occur when reading files from the underlying filesystem. The list below of potential error conditions is informative.

10.1. Throwing an Exception or Returning an Error

This section is normative. Error conditions can arise when reading a file.

Synchronous read methods throw exceptions of the type in the table below if there has been an error with reading or .

The error attribute of the FileReader object MUST return a DOMError object [DOMCore] of the most appropriate type from the table below if there has been an error, and otherwise returns null.

Type Description
NotFoundError If the File or Blob resource could not be found at the time the read was processed, then for asynchronous read methods the error attribute MUST return a "NotFoundError" DOMError and synchronous read methods MUST throw a NotFoundError exception.
SecurityError If:
  • it is determined that certain files are unsafe for access within a Web application
  • it is determined that too many read calls are being made on File or Blob resources
  • it is determined that the file has changed on disk since the user selected it

then for asynchronous read methods the error attribute MAY return a "SecurityError" DOMError and synchronous read methods MAY throw a SecurityError exception.

This is a security error to be used in situations not covered by any other exception type.

NotReadableError If the File or Blob cannot be read, typically due due to permission problems that occur after a reference to a File or Blob has been acquired (e.g. concurrent lock with another application) then for asynchronous read methods the error attribute MUST return a "NotFoundError" DOMError and synchronous read methods MUST throw a NotFoundError exception.
EncodingError If URL length limitations for Data URLs in implementations place limits on the File or Blob data that can be represented as a Data URL [DataURL] then for asynchronous read methods the error attribute MUST return a "EncodingError" DOMError, and synchronous read methods MUST throw a EncodingError exception. User agents MUST NOT use this for the asynchronous readAsText() call and MUST NOT use this for the synchronous readAsText() call, since encoding is determined by the encoding determination algorithm.

11. A URI for Blob and File reference

This section defines a scheme for a URI used to refer to Blob objects (and File objects).

11.1. Requirements for a New Scheme

This specification defines a scheme with URIs of the sort: blob:550e8400-e29b-41d4-a716-446655440000#aboutABBA. This section provides some requirements and is an informative discussion.

  • This scheme should be able to be used with web APIs such as XMLHttpRequest [XHR2], and with elements that are designed to be used with HTTP URIs, such as the img element [HTML]. In general, this scheme should be designed to be used wherever URIs can be used on the web.

    This scheme should have defined response codes, so that web applications can respond to scenarios where the resource is not found, or raises an error, etc.

  • This scheme should have an origin policy and a lifetime stipulation, to allow safe access to binary data from web applications.

    URIs in this scheme should be used as a references to "in-memory" Blobs, and also be re-used elsewhere on the platform to refer to binary resources (e.g. for video-conferencing [Stream API]). URIs in this scheme are designed for impermanence, since they will be typically used to access "in memory" resources.

  • Developers should have the ability to revoke URIs in this scheme, so that they no longer refer to Blob objects. This includes scenarios where file references are no longer needed by a program, but also other uses of Blob objects. Consider a scenario where a Blob object can be exported from a drawing program which uses the canvas element and API [HTML]. A snapshot of the drawing can be created by exporting a Blob. This scheme can be used with the <img> [HTML] element to display the snapshot; if the user deletes the snapshot, any reference to the snapshot in memory via a URI should be invalid, and hence the need to be able to revoke such a URI.

11.2. Discussion of Existing Schemes

This section is an informative discussion of existing schemes that may have been repurposed or reused for the use cases for URIs above, and justification for why a new scheme is considered preferable. These schemes include HTTP [HTTP], file [RFC1630][RFC1738], and a scheme such as urn:uuid [RFC4122]. One broad consideration in determining what scheme to use is providing something with intuitive appeal to web developers.

  • HTTP could be repurposed for the use cases mentioned above; it already comes with well-defined request-response semantics that are already used by web applications. But Blob resources are typically "in-memory" resident (e.g. after a file has been read into memory), and are thus unlike "traditional" HTTP resources that are dereferenced via DNS. While some user agents automatically "proxy" the underlying file system on the local machine via an HTTP server (e.g. with URLs of the sort http://localhost), HTTP is not traditionally used with local resources. Moreover, an important use case for these URIs are that they can be revoked with an API call. HTTP URIs have traditionally been used for resources that may be more permanent (and that are certainly not chiefly memory-resident, such as files that a web application can read). Reusing the HTTP scheme might be confusing for web developers owing to well-established practice.

  • The reuse of file URIs would involve changes to file URI use today, such as adding response codes. While they are used inconsistently in web applications, the structure of the URIs would change, and request-response behavior would have to be superimposed on what already works in a more-or-less ad-hoc manner. Modifying this for the use cases cited above is imprudent, given legacy usage. Additionally, the use cases for a Blob URI scheme call for uses beyond the file system.

  • A scheme of the sort urn:uuid could be used, though use of this scheme is unprecedented in HTML and JavaScript web applications. The urn:uuid scheme is very generically repurposable. URIs in the scheme urn:uuid have the disadvantage of unfamiliarity and inconsistency across the web platform. A new scheme has the advantage of being explicit about what is being referenced. In theory, URIs make no guarantee about what sort of resource is obtained when they are dereferenced; that is left to content labeling and media type. But in practice, the name of the scheme creates an expectation about both the resource and the protocol of the request-response transaction. Choosing a name that clarifies the primary use case -- namely, access to memory-resident Blob resources -- is a worthwhile compromise, and favors clarity, familiarity, and consistency across the web platform.

11.3. Definition of blob URI Scheme

This section defines a blob: URI scheme using a formal grammar. A blob: URI consists of the blob: scheme and an opaque string, along with an optional fragment identifier. In this specification an opaque string is a unique string which can be heuristically generated upon demand such that the probability that two are alike is small, and which is hard to guess (e.g. the Universally Unique IDentifier (UUID) as defined in [RFC4122] is an opaque string). A fragment identifier is optional, and if used, has a distinct interpretation depending on the media type of the Blob or File resource in question [RFC2046].

This section uses the Augmented Backus-Naur Form (ABNF), defined in [RFC5234]. All blob: URLs MUST follow this ABNF.

ABNF

	blob = scheme ":" opaqueString [fragIdentifier]

	scheme = "blob"

	; scheme is always "blob"

	; opaqueString tokens MUST be globally unique
	; opaqueString could be a UUID in its canonical form

	

11.3.1. The Opaque String

Opaque strings MUST NOT include any reserved characters from [RFC3986] without percent-encoding them; these characters MUST be percent-encoded. Opaque strings MUST be globally unique. Such strings SHOULD only use characters in the ranges U+002A to U+002B, U+002D to U+002E, U+0030 to U+0039, U+0041 to U+005A, U+005E to U+007E [Unicode], and MUST be at least 36 characters long. UUID is one potential option available to user agents for use with Blob URIs as opaque strings, and their use is strongly encouraged. UUIDs are defined in [RFC4122]. For an ABNF of UUID, see Appendix A.

11.4. Discussion of Fragment Identifier

The fragment's format, resolution and processing directives depend on the media type [RFC2046] of a potentially retrieved representation, even though such a retrieval is only performed if the blob: URI is dereferenced. For example, in an HTML file [HTML] the fragment identifier could be used to refer to an anchor within the file. If the user agent does not recognize the media type of the resource, OR if a fragment identifer is not meaningful within the resource, it MUST ignore the fragment identifier. Additionally, user agents MUST honor additional fragment processing directives given in the relevant media format specifications; in particular, this includes any modifications to the fragment production given in HTML [HTML]. The following section is normative for fragment identifers in general, though it should be noted that affiliated specifications may extend this definition.

ABNF

	fragIdentifier = "#" fragment

	; Fragment Identifiers depend on the media type of the Blob
	; fragment is defined in [RFC3986]
	; fragment processing for HTML is defined in [HTML]

	fragment    = *( pchar / "/" / "?" )

	pchar       = unreserved / pct-encoded / sub-delims / ":" / "@"

	unreserved    = ALPHA / DIGIT / "-" / "." / "_" / "~"

	pct-encoded   = "%" HEXDIG HEXDIG

	sub-delims    = "!" / "$" / "&" / "'" / "(" / ")"
	                 / "*" / "+" / "," / ";" / "="
	

A valid Blob URI reference could look like: blob:550e8400-e29b-41d4-a716-446655440000#aboutABBA where "#aboutABBA" might be an HTML fragment identifier referring to an element with an id attribute of "aboutABBA".

11.5. Origin of Blob URIs

The origin of a Blob URI MUST be the origin of the script that called URL.createObjectURL. Blob URIs MUST only be valid within this origin.

11.6. Lifetime of Blob URIs

This specification defines the following lifetime conditions on Blob URIs:

  1. This specification adds an additional unloading document cleanup step: user agents MUST revoke any Blob URIs created with URL.createObjectURL from within that document. If these Blob URIs are dereferenced, user agents must respond with 500 Error Condition.

  2. User agents MUST ensure that any Blob URIs are revoked after URL.revokeObjectURL is called with that Blob URI as an argument. User agents MUST respond with a 500 Error Condition if a Blob URI is dereferenced after URL.revokeObjectURL is called on that particular Blob URI.

11.7. Dereferencing Model for Blob URIs

User agents MUST only support requests with GET [HTTP]. If the Blob has a type attribute, or if the Blob has been created with a slice call which uses a contentType argument, responses to dereferencing the Blob URI must include the Content-Type header from HTTP [HTTP] with the value of the type attribute or contentType argument. Specifically, responses MUST only support a subset of responses that are equivalent to the following from HTTP [HTTP]:

11.7.1. Blob Protocol Version

The version of the blob: protocol request and response messages is indicated by the "blob/1.0" string, which MUST be used in request messages and in response messages, and must be used just as the HTTP version in HTTP messages is used [HTTP]. See blob: protocol examples.

11.7.2. 200 OK

This response [HTTP] MUST be used if the request has succeeded, namely the blob: URI has been requested with a GET, satisfies the origin requirement, and satisfies the lifetime requirement. If this response code is used, the user agent MUST also use a Content-Type header [HTTP] with a value equal to the Blob object's type attribute. See blob: protocol examples.

11.7.3. 500 Error Condition

This response [HTTP] MUST be used if:

  • Any request method other than GET is used to dereference the URL.

  • The request violates the origin requirement. In this case, the response SHOULD be accompanied by clarifying text alongside the 500 response, e.g. "500 Origin Violation."

  • The request does not satisfy the lifetime requirement. In this case, the response SHOULD be accompanied by clarifying text alongside the 500 response, e.g. "500 Expired URI."

  • The underlying resource has changed, moved, been deleted or has become invalid. In this case, the response SHOULD be accompanied by clarifying text alongside the 500 response, e.g. "500 Invalid Resource."

  • The permissions surrounding the underlying resource do not permit access. In this case, the response SHOULD be accompanied by clarifying text alongside the 500 response, e.g. "500 Access Violation."

  • A security error has occurred. In this case, the response SHOULD be accompanied by clarifying text alongside the 500 response, e.g. "500 Security Violation."

This response MAY be accompanied by additional messages in the response indicating why the Blob resource could not be served. See blob: protocol examples.

Note

The 500 Error Condition provides a response code, but not a fixed status. User agents MAY leave it as simply "500 Error Condition" or supply additional status information (e.g. "500 Origin Violation"). Implementers are strongly encouraged to provide messages to developers along with the response code.

11.7.4. Request and Response Headers

This section provides sample exchanges between web applications and user agents using the blob: protocol. A request can be triggered using HTML markup of the sort <img src="blob:550e8400-e29b-41d4-a716-446655440000">, after a web application calls URL.createObjectURL on a given blob, which returns blob:550e8400-e29b-41d4-a716-446655440000 to dereference that blob. These examples merely illustrate the protocol; web developers are not likely to interact with all the headers, but the getAllResponseHeaders() method of XMLHttpRequest, if used, will show relevant response headers [XHR2].

Example

Requests could look like this:

HEADERS

	GET 550e8400-e29b-41d4-a716-446655440000 blob/1.0
	

If the blob has an affiliated media type [RFC2046] represented by its type attribute, then the response message should include the Content-Type header from HTTP [HTTP]. See processing media types.

HEADERS

	blob/1.0 200 OK
	Content-Type: image/jpeg

	....
	

If there is a file error or any other kind of error associated with the blob, then a user agent can respond with a 500 Error Condition as the response message. This should also be used if any method other than GET is used to make the request.

HEADERS

	blob/1.0 500 Error Condition

	This file cannot be read.
	

11.7.4.1. Processing Media Types

If a Content-Type header [HTTP] is provided (e.g. if the blob has an affiliated type attribute), then user agents SHOULD obtain and process that media type in a manner consistent with the Media Type Sniffing specification [MIMESNIFF].

11.8. Creating and Revoking a Blob URI

Blob URIs are created and revoked using methods exposed on the URL object, supported by global objects Window [HTML] and WorkerGlobalScope [Web Workers]. Revocation of a Blob URI decouples the Blob URI from the resource it refers to, and if it is dereferenced after it is revoked, user agents MUST return a 500 response. This section describes a supplemental interface to the URL specification [URL API] and presents methods for Blob URI creation and revocation.

IDL

	partial interface URL {

	    static DOMString createObjectURL(Blob blob);
	    static void revokeObjectURL(DOMString url);
	};
	
Note

ECMAScript user agents of this specification MUST ensure that they do not expose a prototype property on the URL interface object unless the user agent also implements the URL [URL API] specification. In other words, URL.prototype MUST evaluate to true if the user agent implements the URL [URL API] specification, and MUST NOT evaluate to true otherwise.

// Window implements URL;

// WorkerUtils implements URL;

The createObjectURL method

Returns a unique Blob URI each time it is called on a valid blob argument, which is a non-null Blob in scope of the global object's URL property from which this static method is called.

  1. If this method is called with a Blob argument that is NOT valid, then user agents MUST return null.

  2. If this method is called with a valid Blob argument, user agents MUST return a unique Blob URI that can be used to dereference the blob argument.

Example

In the example below, after obaining a reference to a Blob object, the static method URL.createObjectURL is called on that Blob object.

ECMAScript

	var file = document.getElementById('file').files[0];
	if(file){
	  blobURLref = window.URL.createObjectURL(file);
	  myimg.src = blobURLref;
	}
	
The revokeObjectURL method

Revokes the Blob URI provided in the string url argument.

  1. If the url refers to a Blob that is both valid and in the same origin of the global object's URL property on which this static method was called, user agents MUST return a 500 response code when the url is dereferenced.
  2. If the url refers to a Blob that is NOT valid OR if the value provided for the url argument is not a Blob URI OR if the url argument refers to a Blob that is NOT in the same origin as the global object's URL property, this method call does nothing. User agents MAY display a message on the error console.

The url argument to the revokeObjectURL method is a Blob URI string.

Example

In the example below, window1 and window2 are separate, but in the same origin; window2 could be an iframe [HTML] inside window1.

ECMAScript

	myurl = window1.URL.createObjectURL(myblob);
	window2.URL.revokeObjectURL(myurl);
	

Since window1 and window2 are in the same origin, the URL.revokeObjectURL call ensures that subsequent dereferencing of myurl results in a 500 Error Condition response.

12. Security Considerations

This section is informative.

This specification allows web content to read files from the underlying file system, as well as provides a means for files to be accessed by unique identifiers, and as such is subject to some security considerations. This specification also assumes that the primary user interaction is with the <input type="file"/> element of HTML forms [HTML], and that all files that are being read by FileReader objects have first been selected by the user. Important security considerations include preventing malicious file selection attacks (selection looping), preventing access to system-sensitive files, and guarding against modifications of files on disk after a selection has taken place.

Editorial note

This section is provisional; more security data may supplement this in subsequent drafts.

13. Requirements and Use Cases

This section covers what the requirements are for this API, as well as illustrates some use cases. This version of the API does not satisfy all use cases; subsequent versions may elect to address these.

14. Appendix A

This section is informative and not normative.

14.1. An ABNF for UUID

The following is an informative ABNF [ABNF] for UUID, which is a strongly encouraged choice for the opaqueString production of Blob URIs.

ABNF

	UUID                   = time-low "-" time-mid "-"
	                         time-high-and-version "-"
	                         clock-seq-and-reserved
	                         clock-seq-low "-" node
	time-low               = 4hexOctet
	time-mid               = 2hexOctet
	time-high-and-version  = 2hexOctet
	clock-seq-and-reserved = hexOctet
	clock-seq-low          = hexOctet
	node                   = 6hexOctet
	hexOctet               = hexDigit hexDigit
	hexDigit =
	         "0" / "1" / "2" / "3" / "4" / "5" / "6" / "7" / "8" / "9" /
	         "a" / "b" / "c" / "d" / "e" / "f" /
	         "A" / "B" / "C" / "D" / "E" / "F"

	

15. Acknowledgements

This specification was originally developed by the SVG Working Group. Many thanks to Mark Baker and Anne van Kesteren for their feedback.

Thanks to Robin Berjon for editing the original specification.

Special thanks to Olli Pettay, Nikunj Mehta, Garrett Smith, Aaron Boodman, Michael Nordman, Jian Li, Dmitry Titov, Ian Hickson, Darin Fisher, Sam Weinig, Adrian Bateman and Julian Reschke.

Thanks to the W3C WebApps WG, and to participants on the public-webapps@w3.org listserv

16. References

16.1. Normative references

RFC2119
Key words for use in RFCs to Indicate Requirement Levels, S. Bradner. IETF.
HTML
HTML5: A vocabulary and associated APIs for HTML and XHTML (work in progress), I. Hickson. W3C.
ProgressEvents
Progress Events, A. van Kesteren. W3C.
RFC2397
The "data" URL Scheme, L. Masinter. IETF.
Web Workers
Web Workers (work in progress), I. Hickson. W3C.
DOM Core
DOM Core (work in progress), A. van Kesteren, Ms2ger. W3C.
Unicode
The Unicode Standard, Version 5.2.0., J. D. Allen, D. Anderson, et al. Unicode Consortium.
RFC2616
Hypertext Transfer Protocol -- HTTP/1.1, R. Fielding, J. Gettys, J. Mogul, H. Frystyk, L. Masinter, P. Leach, T. Berners-Lee. IETF.
RFC2046
Multipurpose Internet Mail Extensions (MIME) Part Two: Media Extensions, N. Freed, N. Borenstein. IETF.
IANA Charsets
Official Names for Character Sets on the Internet, K. Simonsen, W.Choi, et al. IANA.
Typed Arrays
Typed Arrays (work in progress), V. Vukicevic, K. Russell. Khronos Group.
RFC5234
Augmented BNF for Syntax Specifications: ABNF, D. Crocker, P. Overell. IETF.
URL Specification
URL API (work in progress), A. Barth. TBD.
WebIDL Specification
WebIDL (work in progress), C. McCormack.
ECMAScript
ECMAScript 5th Edition, A. Wirfs-Brock, P. Lakshman et al.
MIME Sniffing
MIME Sniffing (work in progress), A. Barth and I. Hickson.

16.2. Informative References

XMLHttpRequest
XMLHttpRequest Level 2 (work in progress), A. van Kesteren. W3C.
Google Gears Blob API
Google Gears Blob API (deprecated)
RFC4122
A Universally Unique IDentifier (UUID) URN Namespace, P. Leach, M. Mealling, R. Salz. IETF.
RFC3986
Uniform Resource Identifier (URI): Generic Syntax, T. Berners-Lee, R. Fielding, L. Masinter. IETF.
RFC1630
Universal Resource Identifiers in WWW, T. Berners-Lee. IETF.
RFC1738
Uniform Resource Locators (URL), T. Berners-Lee, L. Masinter, M. McCahill. IETF.
Stream API
The Stream API, I. Hickson. WHATWG.