On Monday 08 March 2010 00:08:34 Rob Antonishen wrote:
I'd also be worried that allowing http references would enable things like pixel tagging, etc. that could be considered a privacy violation. (I.e. Download a svg file from openclipart that has an embedded linked tracking URL)
-Rob A>
Obviously, downloading remote resources without user consent is bad.
I was asking whether we allow http urls there because it has implications for the UI.
Please consider following: You open existing svg file that contains remote image url, then open image properties. Either we need to disable(as in display in grey) the whole absolute/relative/embed thing or upon using, display a message to the user explaining they can use this only with local urls. What is your opinion on this?
Another thing to consider is what to do if document has set xml:base attribute.
Regards, Martin Sucha