Is there a list of web features locked behind other web features?
Like HTTP2 requires HTTPS.
There's a bunch of stuff that the browser won't let you do without CORS headers.
Browsers block some APIs on file:// URLs.
Etc.
Is there a solid list?
@WomanCorn that's not "locked features" but a security feature
Follow
@reto the CORS locking is for security reasons, I know. The file:// URLs are probably, too. But refusing to do unencrypted HTTP2 seems pretty arbitrary. Or at least I've never heard the justification for it.
Either way, locking features for security reasons is still locking features. If I want to use SharedArrayBuffer, I must configure COEP and that dependency is not obvious.
