2011-10-03 23:07:49: Created issue 'Add "allow-popups" for iframe@sandbox' nickname allowpopups owned by Adrian Bateman on product HTML 5 spec, description 'This issue was raised on behalf of Jacob Rossi, based on the following bug: http://www.w3.org/Bugs/Public/show_bug.cgi?id=12393
There's currently no way for a sandboxed iframe to generate popups (which for
some mashup scenarios, may be valid). We should add an "allow-popups" token for
the sandbox attribute.
When set, window.open(), showModalDialog() , and links with target=â€_blankâ€
would be allowed. However, the newly created browsing contexts should inherit
the sandbox restrictions of the context from which the popup was created.
Here's one good use case:
A site sandboxes a maps widget. The maps widget offers options to launch a
popup for a larger map or for finding directions.
By default in both Chrome and IE10, the popups are blocked. Using allow-popups
enables the control to work as expected while still sandboxing the widget in
the other ways.
' non-public [Adrian Bateman]