Spec: Define per-context contribution limits #164
Conversation
spec.bs
Outdated
| @@ -1341,16 +1377,21 @@ WebIDL modifications {#protected-audience-api-webidl-modifications} | |||
| The {{AuctionAdConfig}} and {{AuctionAdInterestGroup}} dictionaries are | |||
| modified to add a new field: | |||
| <xmp class="idl"> | |||
| dictionary ProtectedAudiencePrivateAggregationConfig { | |||
| dictionary ProtectedAudienceAuctionPrivateAggregationConfig { | |||
There was a problem hiding this comment.
Need to rebase this PR after #166. Although as a general point -- wondering if we should make this change at the same time as we add contextId and filteringIdMaxBytes given they all require activating deterministic counts.
That being said, we'll probably want to make the Shared Storage spec changes soon
There was a problem hiding this comment.
Thanks for the heads up.
I'm planning to make the Protected Audience and Shared Storage spec PRs tomorrow. Let's merge those before this PR.
I'm rebasing now, so I'll have to delete this hunk of the diff. This is the relevant part for the Protected Audience PR:
@@ -1341,16 +1377,21 @@ WebIDL modifications {#protected-audience-api-webidl-modifications}
The {{AuctionAdConfig}} and {{AuctionAdInterestGroup}} dictionaries are
modified to add a new field:
<xmp class="idl">
-dictionary ProtectedAudiencePrivateAggregationConfig {
+dictionary ProtectedAudienceAuctionPrivateAggregationConfig {
+ USVString aggregationCoordinatorOrigin;
+ [EnforceRange] unsigned long long maxContributions;
+};
+
+dictionary ProtectedAudienceInterestGroupPrivateAggregationConfig {
USVString aggregationCoordinatorOrigin;
};
partial dictionary AuctionAdConfig {
- ProtectedAudiencePrivateAggregationConfig privateAggregationConfig;
+ ProtectedAudienceAuctionPrivateAggregationConfig privateAggregationConfig;
};
partial dictionary AuctionAdInterestGroup {
- ProtectedAudiencePrivateAggregationConfig privateAggregationConfig;
+ ProtectedAudienceInterestGroupPrivateAggregationConfig privateAggregationConfig;
};
</xmp>There was a problem hiding this comment.
Just uploaded a rough draft of the Protected Audience spec change in WICG/turtledove#1378.
There was a problem hiding this comment.
And here's the Shared Storage spec change: WICG/shared-storage#216.
dmcardle
force-pushed
the
dmcardle-per-call-report-sizing-spec
branch
from
1df696c to
ff6bee4
Compare
spec.bs
Outdated
| Issue: Shouldn't the paragraph above refer to fields of [=pre-specified report | ||
| parameters=] instead of [=aggregatable report=]? |
There was a problem hiding this comment.
Yeah, switching over sgtm. (I think this was written before pre-specified report parameters existed.)
spec.bs
Outdated
| report is sent, even if there are no contributions or there is insufficent | ||
| budget for the requested contributions. See [Protecting against leaks via | ||
| the number of reports](#protecting-against-leaks-via-the-number-of-reports). | ||
| Note: Even when budget is insufficient for the requested contributions, a report |
There was a problem hiding this comment.
Should we include the "no contributions requested" case in this note?
There was a problem hiding this comment.
Sure. I'll give this another pass -- let me know if you preferred the original.
spec.bs
Outdated
| Issue: Shouldn't the paragraph above refer to fields of [=pre-specified report | ||
| parameters=] instead of [=aggregatable report=]? |
There was a problem hiding this comment.
Yeah, switching over sgtm. (I think this was written before pre-specified report parameters existed.)
The goal is to enable Shared Storage embedders to override the default number of contributions per Private Aggregation report. To that end, this change adds the `maxContributions` field to the web-visible Private Aggregation config dictionary and plumbs its value into Private Aggregation's "pre-specified report parameters". Context: * Explainer: patcg-individual-drafts/private-aggregation-api#146 * Spec change: patcg-individual-drafts/private-aggregation-api#164
|
Not sure what's going on with the validate spec check. I wonder if we need to update something? Will take another look. |
|
Great, I'll squash and push again, let's see if the validation still fails. |
dmcardle
force-pushed
the
dmcardle-per-call-report-sizing-spec
branch
from
c96162a to
5aeb65c
Compare
|
Still failing. Amusingly, the "Validate Web IDL" step from pythagoraskitty/[email protected] fails with a Chrome stacktrace... |
|
Just landed a change to the yaml to use w3c/spec-prod@v2, so maybe one more rebase might fix it? (or at least cause a different error) |
This change adds the web-visible `maxContributions` field, which enables some callers to request different numbers of contributions per report.
dmcardle
force-pushed
the
dmcardle-per-call-report-sizing-spec
branch
from
5aeb65c to
8472d3b
Compare
|
yay, it passed -- thanks! |
SHA: 3433a3e Reason: push, by alexmturner Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
The goal is to enable Shared Storage embedders to override the default number of contributions per Private Aggregation report. To that end, this change adds the `maxContributions` field to the web-visible Private Aggregation config dictionary and plumbs its value into Private Aggregation's "pre-specified report parameters". Context: * Explainer: patcg-individual-drafts/private-aggregation-api#146 * Spec change: patcg-individual-drafts/private-aggregation-api#164
This change adds the web-visible
maxContributionsfield, which enables some callers to request different numbers of contributions per report.Per-context limits are being added to the explainer in #146.
Preview | Diff