|
| 1 | +# FAST Checklist for Secure Payment Confirmation |
| 2 | + |
| 3 | +The following evaluation is based on the [FAST checklist](https://w3c.github.io/apa/fast/checklist.html). |
| 4 | + |
| 5 | +## If technology allows visual rendering of content |
| 6 | + |
| 7 | +SPC does not include any features that result in rendering content in a page. |
| 8 | + |
| 9 | +When Secure Payment Confirmation is called at authentication time, the browser displays the following information in a transaction dialog owned by the browser: |
| 10 | + |
| 11 | +* payeeName and/or payeeOrigin (both strings) |
| 12 | +* instrument displayName and icon (an image or link to an image). The specification discusses how to use the displayName as alt text for the icon. |
| 13 | +* Transaction total and currency (both strings). |
| 14 | + |
| 15 | +## If technology provides author control over color |
| 16 | + |
| 17 | +N/A |
| 18 | + |
| 19 | +## If technology provides features to accept user input |
| 20 | + |
| 21 | +N/A |
| 22 | + |
| 23 | +## If technology provides user interaction features |
| 24 | + |
| 25 | +* The transaction dialog includes browser-owned buttons to cancel or proceed with Web Authentication. |
| 26 | +* [Accessibility considerations for WebAuthn](https://www.w3.org/TR/webauthn/#sctn-accessiblility-considerations) are documented in that specification. |
| 27 | + |
| 28 | +## If technology defines document semantics |
| 29 | + |
| 30 | +N/A |
| 31 | + |
| 32 | +## If technology provides time-based visual media |
| 33 | + |
| 34 | +N/A |
| 35 | + |
| 36 | +## If technology provides audio |
| 37 | + |
| 38 | +N/A |
| 39 | + |
| 40 | +## If technology allows time limits |
| 41 | + |
| 42 | +* SPC relies on the timeout parameter of Web Authentication. |
| 43 | +* Relevant [accessibility considerations for WebAuthn](https://www.w3.org/TR/webauthn/#sctn-accessiblility-considerations) are documented in that specification. |
| 44 | + |
| 45 | +## If technology allows text content |
| 46 | + |
| 47 | +* The SPC transaction dialog includes both an icon and string to help the user identify the relevant payment instrument. |
| 48 | +## If technology creates objects that don't have an inherent text representation |
| 49 | + |
| 50 | +N/A |
| 51 | + |
| 52 | +## If technology provides content fallback mechanisms, whether text or other formats |
| 53 | + |
| 54 | +N/A |
| 55 | + |
| 56 | +## If technology provides visual graphics |
| 57 | + |
| 58 | +N/A |
| 59 | + |
| 60 | +## If technology provides internationalization support |
| 61 | + |
| 62 | +N/A |
| 63 | + |
| 64 | +## If technology defines accessible alternative features |
| 65 | + |
| 66 | +N/A |
| 67 | + |
| 68 | +## If technology provides content directly for end-users |
| 69 | + |
| 70 | +N/A |
| 71 | + |
| 72 | +## If technology defines an API |
| 73 | + |
| 74 | +* SPC relies on the useragent to generate a user interface (the transaction dialog). Previous review of Secure Payment Confirmation concluded there was no need to review the specification ([issue 14](https://github.com/w3c/a11y-request/issues/14#issuecomment-915393934)) and the specification is largely the same since that review. |
| 75 | + |
| 76 | + |
| 77 | +## If technology defines a transmission protocol |
| 78 | + |
| 79 | +N/A |
0 commit comments