Make Permissions-Policy HTTP header OPTIONAL

w3c · marcoscaceres · Mar 1, 2023 · Feb 23, 2023 · Feb 28, 2023 · Feb 28, 2023
commit 77c3272f23750a3ccbfaf9684792aa851bd28299
diff --git a/index.html b/index.html
@@ -690,6 +690,10 @@ <h2>
         allowlist/'self'=], which means third-party contexts are not [=allowed
         to use=] the API by default.
       </p>
+      <p>
+        It is OPTIONAL for user agents for user agents to support
+        [[[PERMISSIONS-POLICY]]]'s `Permissions-Policy` HTTP header.
+      </p>
       <p>
         Developers can use the means afforded by the [[[permissions-policy]]]
         specification to control if and when a third-party context is [=allowed
@@ -708,6 +712,11 @@ <h2>
           [[[Permissions-Policy]]] specification before relying on it to enable
           the Web Share API in third-party contexts.
         </p>
+        <p>
+          The Working Group expects to make the `Permissions-Policy` HTTP
+          header mandatory in a future revisions of this specification, once
+          the header is more widely supported.
+        </p>
       </aside>
     </section>
     <section class="informative" id="a11y">