[Discussion] Out-of-band signal for requesting Binary AST #27
Comments
|
Actually, another option could be to use |
|
Thanks for starting this conversation. It would indeed be great to specify this in such a way that proxies and CDNs can speed up webpages transparently. So far, our experiments with putting compression inside BinAST don't look useful, so I suspect that we're going to end up using an out-of-the-box compression mechanism. So what about a - |
|
Having thought about it a bit more, I'm starting to think that mime-type way is indeed a bit easier to implement and makes more sense that encoding one I originally proposed. So, to be more precise about:
Client-side will have to prepend another mime-type to ...
Accept: application/binjs, */*
Accept-Encoding: gzip, deflate, br
...and server will respond with something like: ...
Content-Type: application/binjs
Content-Encoding: br
...Does that look right? |
|
That looks fine to me. |
|
Cool, looks good to me too. |
|
@Yoric Do we need to commit to this in the proposal text somehow? |
|
I believe that TC39 doesn't care about mime types or content encoding (@syg, can you confirm?), so this should probably go to some other proposal. For the sake of experimenting, I have filed a Firefox bug on the topic. I'll try and find someone to work on it (possibly me) once we have a working multipart tokenizer in Firefox. |
|
@Yoric Thanks! |
|
To clarify - what I meant, even if TC39 doesn't care about these details, it would be still nice to have all information about Binary AST (including delivery) in the same place just so that it would be easy to find and refer to. |
|
@RReverser Maybe in an Examples section? You'll have to discuss this with @syg, he's the Master of the Spec. |
|
FWIW, if this ends up being a thing this will need to be defined in the HTML Standard. Having a monkey patch of sorts of the algorithms there would be good so tests and such can be written against that. You might also want to file an upstream issue at https://github.com/whatwg/html/issues/new to make it clear you're extending the algorithms defined there. |
|
I also think we might want to restrict these to be CORS-loaded, as with module scripts. That's another thing that'll need to be defined here. |
Given that this most likely won't be allowed inline in script tags, what algorithms do you think we'll need to change in HTML spec? As far as I see it, this proposal could get away with no changes to actual normative sections since it should behave exactly as any other external script element, with
Won't this break existing pages relying on scripts in the "transparent optimisation" scenario described above? |
|
@RReverser for classic scripts HTML requires all responses, regardless of their As for requiring CORS, we sorta decided to do that for new types of resources. Given what we now know about attacks on opaque responses that seems like a good thing. It seems bad to me to allow new types of resources to be loaded without CORS, thereby continuing to support known bad patterns. |
I suppose that's true, yeah, although first we would need to have ECMAScript spec changes landed first to have something to link to.
I agree in general, but what concerns me in this case is that it's not really a new type of resource (as in regular definition of "resource type"), rather a special encoding of existing ones that should work transparently for actual websites. So I'm not saying we shouldn't do it per se, but I do wonder if there are scenarios where it would break websites that rely on third-party scripts from a hosting that desides to opt-in to Binary AST. Or, if it's mostly third-party, this shouldn't cause any new issues? |
The HTML Standard links directly to some ECMAScript proposals, such as BigInt and import(), that are expected to make it. If the third-party makes the choice that would be problematic, yes. However, we could make it so that the |
|
Minimal change: I'd like to rename the mime type |
|
I don't have any preferences regarding the mime type, so sounds good to me. |
|
I'd recommend using - instead of + since binast is specific to JavaScript if I'm not mistaken and not a general applicable suffix. |
|
Well, I have the not-so-well-hidden idea of applying this to json soon, and then to experiment with css and html, so I believe that the |
|
Yeah, then it certainly would. |
How does the result differ from CBOR? |
|
I wasn't aware of CBOR. This seems to be pretty much equivalent. |
|
On the question of I suspect that's probably not what you want. But once you make a decision, I'm happy to help you figure out how to get this all registered. The MIME type registration would be an IETF item. Tagging @linuxwolf for his awareness. |
|
@adamroach Would |
|
@j-f1 no, e.g., there's |
I recently asked on the chat about a planned way to request Binary AST from the server and got the following answer:
While this is a relatively simple solution, I have a concern about limitations it imposes.
In particular, in an ideal world I think it would be reasonable to support a usecase where e.g. a shared CDN with lots of JavaScript libraries could simply create Binary AST variants of all the assets, and return them instead of regular JavaScript when it knows that 1) browser supports it and 2) that such change would be mostly invisible to the consumer (that is, JS was indeed requested via
<script>orimport(...)or other means purely for execution, and not withXMLHttpRequestorfetch).To support usecases like that, signal for Binary AST support should come not from HTML level (as it's much harder to get HTML updated on all the websites where script is inserted), but rather on network level.
One way to do this would be adding
binastor similar marker to theAccept-Encodinglist for script requests in supported browsers, which would tell the server that Binary AST version can be safely returned withContent-Encoding: binastin the response.Using encoding headers for this goal feels quite natural, as it's mostly an encoding format for JavaScript, although one might argue that because it's not lossless in terms of debugging information, it doesn't belong to
Accept-Encoding/Content-Encodingheaders - in that case, I'm open to any proposals.The text was updated successfully, but these errors were encountered: