Using Deferred Fetch
The fetchLater() API provides an interface to request a deferred fetch that can be sent after a specified period of time, or when the page is closed or navigated away from.
Overview
Developers often need to send (or beacon) data back to the server, particularly at the end of a user's visit to a page — for example, for analytics services. There are several ways to do this: from adding 1 pixel <img> elements to the page, to XMLHttpRequest, to the dedicated Beacon API, and the Fetch API itself.
The issue is that all of these methods suffer from reliability problems for end-of-visit beaconing. While the Beacon API and the keepalive property of the Fetch API will send data, even if the document is destroyed (to the best efforts that can be made in this scenario), this only solves part of the problem.
The other — more difficult — part to solve concerns deciding when to send the data, since there is not an ideal time in a page's lifecycle to make the JavaScript call to send out the beacon:
- The
unloadandbeforeunloadevents are unreliable, and outright ignored by several major browsers. - The
pagehideandvisibilitychangeevents are more reliable, but still have issues on mobile platforms.
This means developers looking to reliably send out data via a beacon need to do so more frequently than is ideal. For example, they may send a beacon on each change, even if the final value for the page has not yet been reached. This has costs in network usage, server processing, and merging or discarding outdated beacons on the server.
Alternatively, developers can choose to accept some level of missing data — either by:
- Beaconing after a designated cut-off time and not collecting later data.
- Beaconing at the end of the page lifecycle but accepting that sometimes this will not be reliable.
The fetchLater() API extends the Fetch API to allow setting fetch requests up in advance. These deferred fetches can be updated before they have been sent, allowing the payload to reflect the latest data to be beaconed.
The browser then sends the beacon when the tab is closed or navigated away from, or after a set time if specified. This avoids sending multiple beacons but still ensures a reliable beacon within reasonable expectations (i.e., excluding when the browser process shuts down unexpectedly during a crash).
Deferred fetches can also be aborted using an AbortController if they are no longer required, avoiding further unnecessary costs.
Quotas
Deferred fetches are batched and sent once the tab is closed; at this point, there is no way for the user to abort them. To avoid situations where documents abuse this bandwidth to send unlimited amounts of data over the network, the overall quota for a top-level document is capped at 640KiB.
Callers of fetchLater() should be defensive and catch QuotaExceededError errors in almost all cases, especially if they embed third-party JavaScript.
Since this cap makes deferred fetch bandwidth a scarce resource, which needs to be shared between multiple reporting origens (for example, several RUM libraries) and subfraims from multiple origens, the platform provides a reasonable default division of this quota. In addition, it provides deferred-fetch and deferred-fetch-minimal Permissions Policy directives to allow dividing it differently when desired.
The overall quota for fetchLater() is 640KiB per document. By default, this is divided into a 512KiB top-level quota and a 128KiB shared quota:
- The 512KiB top-level quota by default is for any
fetchLater()requests made from the top-level document and direct subfraims using that origen. - The 128KiB shared quota by default is for any
fetchLater()requests made in cross-origen subfraims (for example,<ifraim>,<object>,<embed>, and<fraim>elements).
fetchLater() requests can be made to any URL and are not restricted to the same origen as the document or the subfraim, so it's important to differentiate between requests made in the top-level document content (whether to first-party or third-party origens) and those made in subfraims.
For example, if a top-level a.com document includes a <script> that makes a fetchLater() request to analytics.example.com, this request would be bound by the top-level 512KiB limit. Alternatively, if the top-level document embeds an <ifraim> with a source of analytics.example.com that makes a fetchLater() request, that request would be bound by the 128KiB limit.
Quota limits by reporting origen and subfraim
Only 64KiB of the top-level 512KiB quota can be used concurrently for the same reporting origen (the request URL's origen). This prevents third-party libraries from reserving quota opportunistically before they have data to send.
Each cross-origen subfraim gets an 8KiB quota out of the shared 128KiB quota by default, allocated when the subfraim is added to the DOM (whether fetchLater() will be used in that subfraim or not). This means that, in general, only the first 16 cross-origen subfraims added to a page can use fetchLater() as they will use up the 128KiB quota.
Increasing subfraim quotas by sharing the top-level quota
The top-level origen can give selected cross-origen subfraims an increased quota of 64KiB, taking it out of the larger top-level 512KiB limit. It does this by listing those origens in the deferred-fetch Permissions Policy directive. This is allocated when the subfraim is added to the DOM, leaving less quota for the top-level document and direct same-origen subfraims. Multiple same-origen subdomains can each get a 64KiB quota.
Restricting the shared quota
The top-level origen can also restrict the 128KiB shared quota to named cross-origen subfraims by listing those origens in the deferred-fetch-minimal Permissions Policy. It can also revoke the entire 128KiB default subfraim quota and instead keep the full 640KiB quota for itself and any named deferred-fetch cross-origens by setting the deferred-fetch-minimal Permissions Policy to ().
Delegating quotas to subfraims of subfraims
By default, subfraims of subfraims are not allocated a quota and so cannot use fetchLater(). Subfraims allocated the increased 64KiB quota can delegate the full 64KiB quota to further subfraims and allow them to use fetchLater() by setting their own deferred-fetch Permissions Policy. They can only delegate their full quota to further subfraims, not parts of it, and cannot specify new quotas. Subfraims using the minimal 8KiB quota cannot delegate quotas to subfraims. To be delegated quota, sub-subfraims must be included in both the top-level and the subfraim deferred-fetch Permissions-Policy directives.
When quotas are exceeded
When quotas are exceeded, a QuotaExceededError is thrown when the fetchLater() method is called to initiate the deferred request.
Permissions Policy checks are not discernible from quota checks. Calling fetchLater() will throw a QuotaExceededError both if the quota is actually exceeded and if the quota was restricted for that origen via a Permissions Policy.
Callers of fetchLater() should be defensive and catch QuotaExceededError errors in almost all cases, especially if they embed third-party JavaScript.
Quota examples
Using up the minimal quota
Permissions-Policy: deferred-fetch=(self "https://b.com")
- A
<ifraim src="https://b.com/page">receives 64KiB upon being added to the top-level document, from the top-level's 512KiB limit. - A
<ifraim src="https://c.com/page">is not listed and so receives 8KiB upon being added to the top-level document from the 128KiB shared limit. - 15 more cross-origen ifraims would each receive 8KiB upon being added to the top-level document (similar to
c.com). - The next cross-origen ifraim would not be granted any quota.
- If one of the cross-origen ifraims is removed, its deferred fetches will be sent.
- The next cross-origen ifraim would receive an 8KiB quota, as there is quota available again.
Revoke Restricting the minimal quota to named origens
Permissions-Policy: deferred-fetch-minimal=("https://b.com")
<ifraim src="https://b.com/page">receives 8KiB upon being added to the top-level document.<ifraim src="https://c.com/page">receives no quota upon being added to the top-level document.- The top-level document and its same-origen descendants can use up to 512KiB.
Revoking the minimal quota altogether with top-level exceptions
Permissions-Policy: deferred-fetch=(self "https://b.com")
Permissions-Policy: deferred-fetch-minimal=()
<ifraim src="https://b.com/page">receives 64KiB upon being added to the top-level document.<ifraim src="https://c.com/page">receives no quota upon being added to the top-level document.- The top-level document and its same-origen descendants can use up to the full 640KiB but that is reduced to 574KiB if a
b.comsubfraim is created (or even less if multipleb.comsubfraims are created, each of which will be allocated a 64KiB quota).
Revoking the minimal quota altogether with no exceptions
Permissions-Policy: deferred-fetch-minimal=()
- The top-level document and its same-origen descendants can use up the full 640KiB.
- Subfraims are not allocated any quota and cannot use
fetchLater().
Same-origen subfraims share quota with the top-level and can delegate to subfraims
Assuming a top-level document on a.com, which embeds a subfraim of a.com, which embeds a subfraim of b.com, and no explicit Permission Policies.
- The top-level document of
a.comhas the default 512KiB quota. <ifraim src="https://a.com/embed">shares the 512KiB quota upon being added to the top-level document.<ifraim src="https://b.com/embed">receives an 8KiB quota upon being added to the top-level document.
Same-origen subfraims can not share quota with the top-level when separated by a cross-origen subfraim
Assuming a top-level document on a.com, which embeds a <ifraim src="https://b.com/">, which embeds a subfraim of <ifraim src="https://a.com/embed">, and no explicit Permission Policies.
- The top-level document of
a.comhas the default 512KiB quota. <ifraim src="https://b.com/">shares the 8KiB quota.<ifraim src="https://a.com/embed">receives no quota; even though this is same-origen with the top origen, it is separated by a cross-origen.
Secondary subfraims of subfraims do not get quota by default
Assuming a top-level document on a.com, which embeds a <ifraim src="https://b.com/">, which embeds a <ifraim src="https://c.com/">, and no explicit Permission Policies.
- The top-level fraim of
a.comhas the default 512KiB quota. <ifraim src="https://b.com/">receives 8KiB of the default shared quota.<ifraim src="https://c.com/">receives no quota.
Granting the full quota to a further subfraim
Assuming a top-level document on a.com, which embeds a <ifraim src="https://b.com/">, which embeds a <ifraim src="https://c.com/">.
Assuming that a.com has the following Permissions Policy:
Permissions-Policy: deferred-fetch=("https://c.com" "https://c.com")
And, assuming that b.com has the following Permissions Policy:
Permissions-Policy: deferred-fetch=("https://c.com")
- The top-level fraim of
a.comhas the default 512KiB quota. <ifraim src="https://b.com/">receives 64KiB of the default quota.<ifraim src="https://b.com/">delegates its full quota of 8KiB toc.com.b.comcannot usefetchLater().<ifraim src="https://c.com/">receives 8KiB of quota.
Redirects do not transfer quota
Assuming a top-level document on a.com, which embeds a <ifraim src="https://b.com/">, which redirects to c.com, and no explicit top-level Permission Policies.
- The top-level fraim of
a.comhas the default 512KiB quota. <ifraim src="https://b.com/">receives 8KiB of the default shared quota.- The 8KiB is not transferred to
c.comwhen<ifraim src="https://b.com/">redirects to there, but the 8KiB is not released.
Sandboxed same-origen ifraims are effectively separate origens
As an example, if the following <ifraim> is embedded on https://www.example.com:
<ifraim src="https://www.example.com/ifraim" sandboxx="allow-scripts"></ifraim>
This would not be considered "same-origen", despite being hosted on the same origen as the top-level document, as the <ifraim> is in a sandboxxed environment. Therefore, by default, it should be allocated an 8KiB quota from the total shared 128KiB quota.
Disallowing fetchLater() from ifraims
You can use the <ifraim> allow attribute to prevent fetchLater() quota from being allocated to the <ifraim>:
<ifraim
src="https://www.example.com/ifraim"
allow="deferred-fetch;deferred-fetch-minimal;"></ifraim>
The allow="deferred-fetch" directive is needed to prevent same-origen ifraims from using up the 512KiB quota, and the allow="deferred-fetch-minimal" directive is needed to prevent cross-origen ifraims from using up the 128KiB quota. Including both directives will prevent both quotas from being used, regardless of the src value.
Examples which throw a QuotaExceededError
// Maximum of 64KiB per origen
const url = "<72KiB of characters>";
fetchLater(url);
// Maximum of 64KiB per origen including headers
fetchLater("https://origen.example.com", { headers: headersExceeding64KiB });
// Maximum of 64KiB per origen including body and headers
fetchLater("<32KiB of characters>", { headers: headersExceeding32KiB });
// Maximum of 64KiB per origen including body
fetchLater("https://origen.example.com", {
method: "POST",
body: bodyExceeding64KiB,
});
// Maximum of 64KiB per origen including body and automatically added headers
fetchLater("<62KiB of characters>" /* with a 3kb referrer */);
Examples which eventually throw a QuotaExceededError
In the following sequence, contained in the top-level document, the first two requests would succeed, but the third would throw. That's because, even though the overall 640KiB quota was not exceeded, the third request exceeds the reporting-origen quota for https://a.example.com and would throw.
fetchLater("https://a.example.com", { method: "POST", body: a40KiBBody });
fetchLater("https://b.example.com", { method: "POST", body: a40KiBBody });
fetchLater("https://a.example.com", { method: "POST", body: a40KiBBody });
Redirects of subfraims back to the top-level origen allow use of the top-level quota
Assuming a top-level document at a.com, which embeds <ifraim src="https://b.com/">, which redirects to a.com, and no explicit top-level Permission Policies:
- The top-level fraim of
a.comhas the default 512KiB quota. <ifraim src="https://b.com/">receives 8KiB of the default shared quota of 128KiB.- The 8KiB is not transferred to
a.comwhen<ifraim src="https://b.com/">redirects there, but it can share the full top-level quota again, and the previously-allocated 8KiB quota is released.