undefined | Better HN

0 pointsjunon1y ago0 comments

We already have this with (iirc) postMessage API.

0 comments

lxgr1y ago

That API is exactly one of the reasons Safari still runs some distinct origin sites in the same process together.

Performantly implementing that API across processes is possible, but not quite trivial.

brucehoult1y ago

popup-based authentication does not actually need high performance.

lxgr1y ago

It's not used only for authentication, and figuring out what a website is trying to do heuristically doesn't sound easy either (although I believe Chrome on Android does just that, and enforces a site-locked process when they deem it important for security reasons).

j / k navigate · click thread line to collapse

0 comments

lxgr1y ago

That API is exactly one of the reasons Safari still runs some distinct origin sites in the same process together.

Performantly implementing that API across processes is possible, but not quite trivial.

brucehoult1y ago

popup-based authentication does not actually need high performance.

lxgr1y ago

j / k navigate · click thread line to collapse