CREDENTIAL: Define cloning.

Closes #287.

Author: mikewest

specs/credentialmanagement/index.html

@@ -243,6 +243,9 @@ <h2 class="no-num no-toc no-ref heading settled" id="contents"><span class="cont
   </span></a>
         <li><a href="#store-credential"><span class="secno">4.1.2</span> <span class="content">
     Store a <code>Credential</code>
+  </span></a>
+        <li><a href="#clone-credential"><span class="secno">4.1.3</span> <span class="content">
+    Clone <var>credential</var>
   </span></a>
        </ul>
       <li><a href="#processing-locallystored"><span class="secno">4.2</span> <span class="content">
@@ -818,10 +821,9 @@ <h4 class="heading settled" data-level="3.1.1" id="interfaces-credential-types-c
 
 
     <p><code class="idl"><a data-link-type="idl" href="#credential">Credential</a></code> objects implement <code class="idl"><a data-link-type="idl" href="http://www.w3.org/TR/html5/infrastructure.html#transferable">Transferable</a></code>, and MUST support the
-  the <a data-link-type="dfn" href="http://www.w3.org/TR/html5/infrastructure.html#structured-clone">structured clone</a> algorithm by defining a cloning mechanism.</p>
-
-
-    <p class="issue" id="issue-43c3f08c"><a class="self-link" href="#issue-43c3f08c"></a> Define cloning algorithms. <a href="https://github.com/w3c/webappsec/issues/287">&lt;https://github.com/w3c/webappsec/issues/287></a></p>
+  the <a data-link-type="dfn" href="http://www.w3.org/TR/html5/infrastructure.html#structured-clone">structured clone</a> algorithm. Unless otherwise specified, the cloning
+  mechanism for all objects which implement <code class="idl"><a data-link-type="idl" href="#credential">Credential</a></code> is defined in
+  <a href="#clone-credential">§4.1.3 Clone credential</a>.</p>
 
 
     <pre class="idl">dictionary <dfn class="idl-code" data-dfn-type="dictionary" data-export="" id="dictdef-locallystoredcredentialdata">LocallyStoredCredentialData<a class="self-link" href="#dictdef-locallystoredcredentialdata"></a></dfn> : <a data-link-type="idl-name" href="#dictdef-credentialdata">CredentialData</a> {
@@ -1968,6 +1970,75 @@ <h4 class="heading settled" data-level="4.1.2" id="store-credential"><span class
 
 
 
+    </ol>
+
+  
+    <h4 class="heading settled" data-level="4.1.3" id="clone-credential"><span class="secno">4.1.3. </span><span class="content">
+    Clone <var>credential</var>
+  </span><a class="self-link" href="#clone-credential"></a></h4>
+
+
+    <p>Given a <code class="idl"><a data-link-type="idl" href="#credential">Credential</a></code> (<var>input</var>), the following algorithm
+  defines the way in which a <a data-link-type="dfn" href="http://www.w3.org/TR/html5/infrastructure.html#structured-clone">structured clone</a> will be produced. This
+  algorithm plugs into the <a data-link-type="dfn" href="http://www.w3.org/TR/html5/infrastructure.html#internal-structured-cloning-algorithm">internal structured cloning algorithm</a>
+  defined in <a data-link-type="biblio" href="#biblio-html">[HTML]</a>:</p>
+
+  
+    <ol>
+    
+     <li>
+      Let <var>output</var> be a <code class="idl"><a data-link-type="idl" href="#credential">Credential</a></code> object of the same type as
+      <var>input</var>’s <code>constructor</code>.
+    
+     
+    
+     <li>
+      For each internal slot on <var>input</var>:
+
+      
+      <ol>
+        
+       <li>
+          Let <var>name</var> be the name of the slot.
+        
+       
+        
+       <li>
+          Let <var>source value</var> be the slot’s value.
+        
+       
+        
+       <li>
+          Let <var>cloned value</var> be the result of invoking the <a data-link-type="dfn" href="http://www.w3.org/TR/html5/infrastructure.html#internal-structured-cloning-algorithm">internal
+          structured cloning algorithm</a> with <var>source value</var> as the
+          "<code>input</code>" argument, and <var>memory</var> as the
+          "<code>memory</code>" argument.
+        
+       
+        
+       <li>
+          If an exception results from the previous step, abort the overall
+          <a data-link-type="dfn" href="http://www.w3.org/TR/html5/infrastructure.html#structured-clone">structured clone</a> algorithm, and pass that exception through
+          to the caller.
+        
+       
+        
+       <li>
+          Add a new slot to <var>output</var> having name <var>name</var> and
+          value <var>cloned value</var>.
+        
+       
+      
+      </ol>
+      
+    
+     
+    
+     <li>
+      Set <var>deep clone</var> to <code>own</code>.
+    
+     
+  
     </ol>
 
 
@@ -3005,7 +3076,10 @@ <h3 class="heading settled" data-level="7.2" id="privacy-chooser-leakage"><span
 
 
     <p>Further, these images MUST be fetched with the <code>credentials</code> mode
-  set to "<code>omit</code>".</p>
+  set to "<code>omit</code>", the <code>skip-service-worker flag</code> set, the
+  <code>client</code> set to <code>null</code>, the <code>initiator</code> set
+  to the empty string, and the <code>destination</code> set to
+  <code>subresource</code>.</p>
 
 
     <h3 class="heading settled" data-level="7.3" id="locally-stored-data"><span class="secno">7.3. </span><span class="content">Locally Stored Data</span><a class="self-link" href="#locally-stored-data"></a></h3>
@@ -3029,12 +3103,12 @@ <h3 class="heading settled" data-level="7.3" id="locally-stored-data"><span clas
 
     <h2 class="heading settled" data-level="8" id="implementation-considerations"><span class="secno">8. </span><span class="content">Implementation Considerations</span><a class="self-link" href="#implementation-considerations"></a></h2>
 
-  
-    <h3 class="heading settled" data-level="8.1" id="implementation-for-authors"><span class="secno">8.1. </span><span class="content">Website Authors</span><a class="self-link" href="#implementation-for-authors"></a></h3>
-
 
     <p><em>This section is non-normative.</em></p>
 
+  
+    <h3 class="heading settled" data-level="8.1" id="implementation-for-authors"><span class="secno">8.1. </span><span class="content">Website Authors</span><a class="self-link" href="#implementation-for-authors"></a></h3>
+
 
     <p class="issue" id="issue-e1d9f1af"><a class="self-link" href="#issue-e1d9f1af"></a> Add some thoughts here about when and how the API
   should be used, especially with regard to <code class="idl"><a data-link-type="idl" href="#dom-credentialrequestoptions-suppressui">suppressUI</a></code>. <a href="https://github.com/w3c/webappsec/issues/290">&lt;https://github.com/w3c/webappsec/issues/290></a></p>
@@ -3398,6 +3472,7 @@ <h3 class="no-num heading settled" id="index-defined-elsewhere"><span class="con
      <li><a href="http://www.w3.org/TR/html5/browsers.html#allowed-to-show-a-popup">allowed to show a popup</a>
      <li><a href="http://www.w3.org/TR/html5/forms.html#autofilling-form-controls:-the-autocomplete-attribute">autocomplete</a>
      <li><a href="http://www.w3.org/TR/html5/webappapis.html#incumbent-settings-object">incumbent settings object</a>
+     <li><a href="http://www.w3.org/TR/html5/infrastructure.html#internal-structured-cloning-algorithm">internal structured cloning algorithm</a>
      <li><a href="http://www.w3.org/TR/html5/browsers.html#nested-browsing-context">nested browsing context</a>
      <li><a href="http://www.w3.org/TR/html5/webappapis.html#responsible-document">responsible document</a>
      <li><a href="http://www.w3.org/TR/html5/infrastructure.html#structured-clone">structured clone</a>
@@ -3485,6 +3560,8 @@ <h3 class="no-num heading settled" id="informative"><span class="content">Inform
   <dl>
    <dt id="biblio-browserid"><a class="self-link" href="#biblio-browserid"></a>[BROWSERID]
    <dd>Ben Adida; et al. <a href="https://github.com/mozilla/id-specs/blob/prod/browserid/index.md">BrowserID</a>. URL: <a href="https://github.com/mozilla/id-specs/blob/prod/browserid/index.md">https://github.com/mozilla/id-specs/blob/prod/browserid/index.md</a>
+   <dt id="biblio-html"><a class="self-link" href="#biblio-html"></a>[HTML]
+   <dd>Ian Hickson. <a href="https://html.spec.whatwg.org/multipage/">HTML Standard</a>. Living Standard. URL: <a href="https://html.spec.whatwg.org/multipage/">https://html.spec.whatwg.org/multipage/</a>
    <dt id="biblio-manifest"><a class="self-link" href="#biblio-manifest"></a>[MANIFEST]
    <dd>Marcos Caceres; Anssi Kostiainen; Kenneth Rohde Christiansen; et al. <a href="http://w3c.github.io/manifest/">Manifest for web application</a>. WD. URL: <a href="http://w3c.github.io/manifest/">http://w3c.github.io/manifest/</a>
    <dt id="biblio-sri"><a class="self-link" href="#biblio-sri"></a>[SRI]
@@ -3566,7 +3643,6 @@ <h2 class="no-num heading settled" id="idl-index"><span class="content">IDL Inde
 </pre>
   <h2 class="no-num heading settled" id="issues-index"><span class="content">Issues Index</span><a class="self-link" href="#issues-index"></a></h2>
   <div style="counter-reset:issue">
-   <div class="issue"> Define cloning algorithms. <a href="https://github.com/w3c/webappsec/issues/287">&lt;https://github.com/w3c/webappsec/issues/287></a><a href="#issue-43c3f08c"> ↵ </a></div>
    <div class="issue"> Anne suggests that this might be better modeled
       as an <code>ImageBitmap</code> or <code>blob:</code>. We also need to
       figure out responsiveness. Perhaps <a data-link-type="biblio" href="#biblio-manifest">[MANIFEST]</a>'s format? <a href="https://github.com/w3c/webappsec/issues/247">&lt;https://github.com/w3c/webappsec/issues/247></a><a href="#issue-c874d302"> ↵ </a></div>

specs/credentialmanagement/index.src.html

@@ -27,6 +27,7 @@ <h1>Credential Management Level 1</h1>
     urlPrefix: infrastructure.html
       text: resolve a url
       text: structured clone
+      text: internal structured cloning algorithm
     urlPrefix: forms.html
       text: autocomplete
     urlPrefix: browsers.html
@@ -519,9 +520,9 @@ <h4 id="interfaces-credential-types-credential"><code>Credential</code></h4>
   </dl>
 
   {{Credential}} objects implement {{Transferable}}, and MUST support the
-  the <a>structured clone</a> algorithm by defining a cloning mechanism.
-
-  ISSUE(w3c/webappsec#287): Define cloning algorithms.
+  the <a>structured clone</a> algorithm. Unless otherwise specified, the cloning
+  mechanism for all objects which implement {{Credential}} is defined in
+  [[#clone-credential]].
 
   <pre class="idl">
     dictionary LocallyStoredCredentialData : CredentialData {
@@ -1241,6 +1242,52 @@ <h4 id="store-credential">
     </li>
   </ol>
 
+  <h4 id="clone-credential">
+    Clone <var>credential</var>
+  </h4>
+
+  Given a {{Credential}} (<var>input</var>), the following algorithm
+  defines the way in which a <a>structured clone</a> will be produced. This
+  algorithm plugs into the <a>internal structured cloning algorithm</a>
+  defined in [[HTML]]:
+
+  <ol>
+    <li>
+      Let <var>output</var> be a {{Credential}} object of the same type as
+      <var>input</var>'s <code>constructor</code>.
+    </li>
+    <li>
+      For each internal slot on <var>input</var>:
+
+      <ol>
+        <li>
+          Let <var>name</var> be the name of the slot.
+        </li>
+        <li>
+          Let <var>source value</var> be the slot's value.
+        </li>
+        <li>
+          Let <var>cloned value</var> be the result of invoking the <a>internal
+          structured cloning algorithm</a> with <var>source value</var> as the
+          "<code>input</code>" argument, and <var>memory</var> as the
+          "<code>memory</code>" argument.
+        </li>
+        <li>
+          If an exception results from the previous step, abort the overall
+          <a>structured clone</a> algorithm, and pass that exception through
+          to the caller.
+        </li>
+        <li>
+          Add a new slot to <var>output</var> having name <var>name</var> and
+          value <var>cloned value</var>.
+        </li>
+      </ol>
+    </li>
+    <li>
+      Set <var>deep clone</var> to <code>own</code>.
+    </li>
+  </ol>
+
   <h3 id="processing-locallystored">
     Processing <code>LocallyStoredCredential</code>s
   </h3>