[whatwg] some thoughts on sandboxed IFRAMEs

Lachlan Hunt lachlan.hunt at lachy.id.au
Fri Feb 5 06:32:44 PST 2010


Lachlan Hunt wrote:
> Kornel Lesinski wrote:
>> However, if we're going to introduce token-based sandbox anyway, I
>> suggest putting token in tag name:
>>
>> <sandbox-$token>...</sandbox-$token>
>>
>> where $token is the random part. This avoids oddity of attributes in
>> closing tag, and is compatible with XML. In XML you could also use:
>>
>> <$token:sandbox xmlns:$token="…"></$token:sandbox>
>
> No, you couldn't use a namespace like that, because then the sandbox
> element would not be in the HTML namespace, and thus would not have any
> known semantics.

Um, ignore me.  I'm just not thinking properly today.

-- 
Lachlan Hunt - Opera Software
http://lachy.id.au/
http://www.opera.com/



More information about the whatwg mailing list