242589 – [Web Share] expand sharable schemes to HTML safe listed range

Bug 242589 - [Web Share] expand sharable schemes to HTML safe listed range

Summary: [Web Share] expand sharable schemes to HTML safe listed range

Status:	NEW

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	New Bugs (show other bugs)
Version:	Other
Hardware:	Unspecified Unspecified

Importance:	P2 Normal
Assignee:	Nobody

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2022-07-11 00:24 PDT by Marcos Caceres
Modified:	2022-07-18 00:25 PDT (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Marcos Caceres 2022-07-11 00:24:40 PDT

We currently only allow sharing http and https URLs. However, the Web Share API allows sharing the "safelisted schemes"[1], listed below (the list can change). 

We ca exclude/include other schemes.  

* bitcoin
* ftp
* ftps
* geo
* im
* irc
* ircs
* magnet
* mailto
* matrix
* mms
* news
* nntp
* openpgp4fpr
* sftp
* sip
* sms
* smsto
* ssh
* tel
* urn
* webcal
* wtai
* xmpp

It's worth checking if these are indeed safe to share and if there are any side effects or if they trigger any URL parser behavior. 


[1] https://html.spec.whatwg.org/#safelisted-scheme

Comment 1 Radar WebKit Bug Importer 2022-07-18 00:25:21 PDT

<rdar://problem/97179827>