We're adding UX to clearly indicate http:// or https:// in fullscreen while still meeting the user desire for secure one-click-to-fullscreen. The latest and greatest proposal posted here:
https://bugzilla.mozilla.org/show_bug.cgi?id=1129061 --Jet On Mon, May 4, 2015 at 2:04 PM, Eric Rescorla <e...@rtfm.com> wrote: > On Mon, May 4, 2015 at 1:57 PM, Xidorn Quan <quanxunz...@gmail.com> wrote: > > > On Tue, May 5, 2015 at 6:04 AM, Martin Thomson <m...@mozilla.com> wrote: > > > > > On Mon, May 4, 2015 at 11:00 AM, Daniel Holbert <dholb...@mozilla.com> > > > wrote: > > > > (I think there's a strong case for disabling *persistent* fullscreen > > > > permission, for the reasons described in ekr's response to you > here. I > > > > haven't seen any proposal for going beyond that, but I might've > missed > > > it.) > > > > > > A little birdy told me that that is planned. > > > > > > > I'm currently working on fullscreen. I believe our current plan is > neither > > disabling fullscreen on HTTP, nor disabling persistent permission of > that. > > > > Instead, we're going to remove permission bit on fullscreen, which means > > website can always enter fullscreen as far as that is initiated from a > user > > input. We plan to use some transition animation to make entering > fullscreen > > obvious for users, so that they are free from the burden deciding > whether a > > website is trustworthy. > > > This is not what I gathered from the notes Richard Barnes forwarded me. > Rather, I had the impression that we were going to make the animation more > aggressive *and* require a permissions prompt every time for HTTP. > > Richard? > > -Ekr > _______________________________________________ > dev-platform mailing list > dev-platform@lists.mozilla.org > https://lists.mozilla.org/listinfo/dev-platform > _______________________________________________ dev-platform mailing list dev-platform@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-platform
