Cross-Origin Resource Sharing
Method of performing XMLHttpRequests across domains
DNSSEC and DANE
Method of validating a DNS response against a trusted root server. Mitigates various attacks that could reroute a user to a fake site while showing the real URL for the original site.
HTML5 semantic elements
HTML5 offers some new elements, primarily for semantic purposes. The elements include: `section`, `article`, `aside`, `header`, `footer`, `nav`, `figure`, `figcaption`, `time`, `mark` & `main`.
KeyboardEvent.location
A `KeyboardEvent` property that indicates the location of the key on the input device. Useful when there are more than one physical key for the same logical key (e.g. left or right "Control" key; main or numpad "1" key).
Resource Hints: preconnect
Gives a hint to the browser to begin the connection handshake (DNS, TCP, TLS) in the background to improve performance. This is indicated using `<link rel="preconnect" href="https://example-domain.com/">`
CSS3 object-fit/object-position
Method of specifying how an object (image or video) should fit inside its box. object-fit options include "contain" (fit according to aspect ratio), "fill" (stretches object to fill) and "cover" (overflows box but maintains ratio), where object-position allows the object to be repositioned like background-image does.
'SameSite' cookie attribute
Same-site cookies ("First-Party-Only" or "First-Party") allow servers to mitigate the risk of CSRF and information leakage attacks by asserting that a particular cookie should only be sent with requests initiated from the same registrable domain.
Shadow DOM (V1)
Method of establishing and maintaining functional boundaries between DOM trees and how these trees interact with each other within a document, thus enabling better functional encapsulation within the DOM & CSS.
View Transitions API (single-document)
Provides a mechanism for easily creating animated transitions between different DOM states, while also updating the DOM contents in a single step. This API is specific to single-document transitions, support for same-origin cross-document transitions is [being planned](https://github.com/WICG/view-transitions/blob/main/cross-doc-explainer.md).
Cross-document messaging
Method of sending information from a page on one domain to a page on a different one (using postMessage)
analysernode api: getbytetimedomaindata
analysernode api: getfloattimedomaindata
document api: domain
idledeadline api: timeremaining
performanceresourcetiming api: domainlookupend
performanceresourcetiming api: domainlookupstart
performancetiming api: domainlookupend
performancetiming api: domainlookupstart
workletsharedstorage api: remainingbudget
html element: main
headers http header: permissions-policy: document-domain
javascript operator: remainder (`%`)
javascript operator: remainder assignment (`x %= y`)
23 results found.