From c957afa710355a8a96c2674b5d6402fb11faa700 Mon Sep 17 00:00:00 2001 From: Sandor Major Date: Tue, 29 Oct 2024 16:16:07 -0400 Subject: [PATCH] Remove redundant detail in example (#19) Under "Status quo" the placeholder widget does not need to "reqeust" unpartitioned cookie access, it will have that by default. It is also not fetching the real widget at this point, that will come in step 4. --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 8c04d86..5a32cd0 100644 --- a/README.md +++ b/README.md @@ -37,7 +37,7 @@ These costs and constraints can be avoided by supporting a few new headers. As an illustrative example, consider a calendar widget on calendar.com, embedded in example.com. During the user's first-ever visit to the example.com page, the flow of events is the following: 1. The user agent requests the calendar widget's content. - * The fetch of this content is uncredentialed, as the user agent is blocking third-party cookies by default (by assumption). As a result, the server must respond with a placeholder that only requests unpartitioned cookie access, and then fetches the real widget. + * The fetch of this content is uncredentialed, as the user agent is blocking third-party cookies by default (by assumption). As a result, the server must respond with a placeholder. 1. The user agent loads the placeholder widget, without giving access to unpartitioned cookies. 1. The widget placeholder calls `document.requestStorageAccess()`. * Note: this proposal does not include any changes to the existing requirements for obtaining permission.