Rewrite some non-normative text to remove MUST and MUST NOT language.

mgiuca · mgiuca · commit 9e8d108fc3e6 · 2017-06-22T10:38:38.000+10:00
It is now written as an explanation of requirements elsewhere in the spec. Closes #40.
diff --git a/index.html b/index.html
@@ -187,10 +187,10 @@ <h4>
             <a for="Navigator"><code>share</code></a> always shows some form of
             UI, to give the user a choice of application and get their approval
             to invoke and send data to a potentially native application (which
-            carries a security risk). For this reason, user agents MUST still
-            show UI even if there is only a single share target, and MUST NOT
-            perform any kind of "always use this target" to bypass the UI in
-            subsequent share operations.
+            carries a security risk). For this reason, user agents are
+            prohibited from showing any kind of "always use this target in the
+            future" option, or bypassing the UI if there is only a single share
+            target.
           </div>
         </section>
       </section>
@@ -335,22 +335,23 @@ <h2>
         (depending on the underlying platform).
       </p>
       <ul>
-        <li>User agents MUST NOT allow the website to learn which apps are
-        installed, or which app was chosen from
-        <a><code>navigator.share</code></a>. This information could be used for
-        fingerprinting, as well as leaking details about the user's device.
+        <li>There is a requirement to not allow the website to learn which apps
+        are installed, or which app was chosen from
+        <a><code>navigator.share</code></a>, because this information could be
+        used for fingerprinting, as well as leaking details about the user's
+        device.
         </li>
         <li>Implementors should carefully consider what information is revealed
         in the error message when <a><code>navigator.share</code></a> is
         rejected. Even distinguishing between the case where no targets are
         available and user cancellation may reveal information about which apps
         are installed on the user's device.
         </li>
-        <li>On every call to <a><code>navigator.share</code></a>, the user MUST
-        be presented with a dialog asking them to select a target application
-        (even if there is only one possible target). This surface serves as a
-        security confirmation, ensuring that websites cannot silently send data
-        to native applications.
+        <li>There is a requirement that <a><code>navigator.share</code></a>
+        presents the user with a dialog asking them to select a target
+        application (even if there is only one possible target). This surface
+        serves as a security confirmation, ensuring that websites cannot
+        silently send data to native applications.
         </li>
         <li>Due to the capabilities of the API surface,
         <a><code>navigator.share</code></a> is <a data-cite=
