From 7de83749c0ab52445a5dbf5bbb770224f54e870e Mon Sep 17 00:00:00 2001
From: Nan Lin <linnan@chromium.org>
Date: Mon, 28 Oct 2024 15:27:56 -0400
Subject: [PATCH 1/8] Explainer change for separate rate-limits for embedded
 site

---
 EVENT.md | 4 ++++
 index.bs | 2 ++
 2 files changed, 6 insertions(+)

diff --git a/EVENT.md b/EVENT.md
index e688141b72..6ed3132398 100644
--- a/EVENT.md
+++ b/EVENT.md
@@ -980,6 +980,10 @@ were reported.
 
 In order to achieve the privacy goals listed above the API has various rate limits, which can be found [here](https://github.com/WICG/attribution-reporting-api/blob/main/params/chromium-params.md) for Chromium.
 
+Note: Browsers may choose to allow separate rate limits for the embedded site 
+for specific use cases (for example, [AMP](https://amp.dev) pages rendered by
+an AMP cache/viewer provider).
+
 ### Trigger Data
 
 Trigger data, e.g. advertiser-side data, is extremely important for critical use
diff --git a/index.bs b/index.bs
index 74875eff62..74e7dadff7 100644
--- a/index.bs
+++ b/index.bs
@@ -1878,6 +1878,8 @@ To <dfn>check if cookie-based debugging is allowed</dfn> given a
 To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|, return |node|'s [=node navigable=]'s
 [=navigable/top-level traversable=]'s [=navigable/active document=]'s [=origin=].
 
+Note: The user agent MAY return the embedded origin for specific use cases.
+
 <h3 id="obtaining-randomized-response">Obtaining a randomized response</h3>
 
 To <dfn>obtain a randomized response</dfn> given |trueValue|, a [=set=] |possibleValues|, and a

From cdf39fc8ffe8fed3d74324efa6e8123af11a68f2 Mon Sep 17 00:00:00 2001
From: Nan Lin <80365263+linnan-github@users.noreply.github.com>
Date: Mon, 28 Oct 2024 22:42:15 -0400
Subject: [PATCH 2/8] Update verbose_debugging_reports.md

---
 verbose_debugging_reports.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/verbose_debugging_reports.md b/verbose_debugging_reports.md
index 046c56a470..335c80fa99 100644
--- a/verbose_debugging_reports.md
+++ b/verbose_debugging_reports.md
@@ -39,7 +39,7 @@ The `body` will contain the following fields for all source debugging reports:
   This will be a string if there was one such site, or a list of strings if
   there were multiple.
 * `source_event_id`: The source registration's `source_event_id`.
-* `source_site`: The top-level site on which the source registration occurred.
+* `source_site`: The top-level site, or the embedded site for specific use cases, on which the source registration occurred.
 
 Additionally:
 
@@ -155,7 +155,7 @@ Additionally:
 * If the trigger was attributed to a source, then the `body` will also contain
   the following fields:
    * `source_event_id`: The source registration's `source_event_id`.
-   * `source_site`: The top-level site on which the source registration
+   * `source_site`: The top-level site, or embedded site for specific use cases, on which the source registration
       occurred.
    * `source_debug_key`: The source registration's `debug_key`, but omitted if
      the source registration did not contain a valid `debug_key` or

From 49fb85a18cc6c8ceae11bee6bcb693057c61875d Mon Sep 17 00:00:00 2001
From: Nan Lin <80365263+linnan-github@users.noreply.github.com>
Date: Mon, 28 Oct 2024 22:44:00 -0400
Subject: [PATCH 3/8] Update verbose_debugging_reports.md

---
 verbose_debugging_reports.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/verbose_debugging_reports.md b/verbose_debugging_reports.md
index 335c80fa99..7320aa0d28 100644
--- a/verbose_debugging_reports.md
+++ b/verbose_debugging_reports.md
@@ -155,7 +155,7 @@ Additionally:
 * If the trigger was attributed to a source, then the `body` will also contain
   the following fields:
    * `source_event_id`: The source registration's `source_event_id`.
-   * `source_site`: The top-level site, or embedded site for specific use cases, on which the source registration
+   * `source_site`: The top-level site, or the embedded site for specific use cases, on which the source registration
       occurred.
    * `source_debug_key`: The source registration's `debug_key`, but omitted if
      the source registration did not contain a valid `debug_key` or

From 6185e1436d28222e5e5ca8d4848b93f4d9be8312 Mon Sep 17 00:00:00 2001
From: Nan Lin <linnan@chromium.org>
Date: Tue, 19 Nov 2024 12:41:15 -0500
Subject: [PATCH 4/8] review

---
 EVENT.md |  7 ++++---
 index.bs | 10 +++++++---
 2 files changed, 11 insertions(+), 6 deletions(-)

diff --git a/EVENT.md b/EVENT.md
index 6ed3132398..362dbb8324 100644
--- a/EVENT.md
+++ b/EVENT.md
@@ -980,9 +980,10 @@ were reported.
 
 In order to achieve the privacy goals listed above the API has various rate limits, which can be found [here](https://github.com/WICG/attribution-reporting-api/blob/main/params/chromium-params.md) for Chromium.
 
-Note: Browsers may choose to allow separate rate limits for the embedded site 
-for specific use cases (for example, [AMP](https://amp.dev) pages rendered by
-an AMP cache/viewer provider).
+Note: Browsers may choose to allow separate limits, e.g. storage limit,
+rate-limits, and destination limits, for the embedded site/origin for specific
+use cases (for example, [AMP](https://amp.dev) pages rendered by an AMP
+cache/viewer provider).
 
 ### Trigger Data
 
diff --git a/index.bs b/index.bs
index 74e7dadff7..b85e1bf7cc 100644
--- a/index.bs
+++ b/index.bs
@@ -1875,10 +1875,14 @@ To <dfn>check if cookie-based debugging is allowed</dfn> given a
 
 <h3 algorithm id="obtaining-context-origin">Obtaining context origin</h3>
 
-To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|, return |node|'s [=node navigable=]'s
-[=navigable/top-level traversable=]'s [=navigable/active document=]'s [=origin=].
+To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|:
 
-Note: The user agent MAY return the embedded origin for specific use cases.
+1. Optionally, return the embedded origin if it exists.
+1. Return |node|'s [=node navigable=]'s [=navigable/top-level traversable=]'s
+    [=navigable/active document=]'s [=origin=].
+
+Note: The user agent MAY return the embedded origin to allow separate limits
+for specific use cases.
 
 <h3 id="obtaining-randomized-response">Obtaining a randomized response</h3>
 

From 8a0e1561605bc4fbdbf4b5ba837e13e84eb30d2c Mon Sep 17 00:00:00 2001
From: Nan Lin <linnan@chromium.org>
Date: Thu, 2 Jan 2025 10:12:59 -0500
Subject: [PATCH 5/8] review

---
 index.bs                     | 2 +-
 verbose_debugging_reports.md | 9 ++++++---
 2 files changed, 7 insertions(+), 4 deletions(-)

diff --git a/index.bs b/index.bs
index b85e1bf7cc..ae61e04abf 100644
--- a/index.bs
+++ b/index.bs
@@ -1881,7 +1881,7 @@ To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|:
 1. Return |node|'s [=node navigable=]'s [=navigable/top-level traversable=]'s
     [=navigable/active document=]'s [=origin=].
 
-Note: The user agent MAY return the embedded origin to allow separate limits
+Note: The user agent may return the embedded origin to allow separate limits
 for specific use cases.
 
 <h3 id="obtaining-randomized-response">Obtaining a randomized response</h3>
diff --git a/verbose_debugging_reports.md b/verbose_debugging_reports.md
index 7320aa0d28..393a1ad71c 100644
--- a/verbose_debugging_reports.md
+++ b/verbose_debugging_reports.md
@@ -39,7 +39,9 @@ The `body` will contain the following fields for all source debugging reports:
   This will be a string if there was one such site, or a list of strings if
   there were multiple.
 * `source_event_id`: The source registration's `source_event_id`.
-* `source_site`: The top-level site, or the embedded site for specific use cases, on which the source registration occurred.
+* `source_site`: The top-level site, or the embedded site for specific use cases
+  (for example, [AMP](https://amp.dev) pages rendered by an AMP cache/viewer provider),
+  on which the source registration occurred.
 
 Additionally:
 
@@ -155,8 +157,9 @@ Additionally:
 * If the trigger was attributed to a source, then the `body` will also contain
   the following fields:
    * `source_event_id`: The source registration's `source_event_id`.
-   * `source_site`: The top-level site, or the embedded site for specific use cases, on which the source registration
-      occurred.
+   * `source_site`: The top-level site, or the embedded site for specific use cases
+      (for example, [AMP](https://amp.dev) pages rendered by an AMP cache/viewer provider),
+      on which the source registration occurred.
    * `source_debug_key`: The source registration's `debug_key`, but omitted if
      the source registration did not contain a valid `debug_key` or
      [cookie-based debugging][] was prohibited.

From 5eab4b70be9f52dc37bf5c7c42ad86615db7a94d Mon Sep 17 00:00:00 2001
From: Nan Lin <80365263+linnan-github@users.noreply.github.com>
Date: Thu, 30 Jan 2025 14:14:41 -0500
Subject: [PATCH 6/8] Clarify for embedded origin

---
 index.bs | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/index.bs b/index.bs
index ae61e04abf..b82ff582c7 100644
--- a/index.bs
+++ b/index.bs
@@ -1877,12 +1877,13 @@ To <dfn>check if cookie-based debugging is allowed</dfn> given a
 
 To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|:
 
-1. Optionally, return the embedded origin if it exists.
-1. Return |node|'s [=node navigable=]'s [=navigable/top-level traversable=]'s
+1. If applicable for [=implemenation-defined=] use cases, return the embedded origin.
+1. Otherwise, return |node|'s [=node navigable=]'s [=navigable/top-level traversable=]'s
     [=navigable/active document=]'s [=origin=].
 
 Note: The user agent may return the embedded origin to allow separate limits
-for specific use cases.
+for specific use cases. Embedded origin could be the effective top-level origin,
+e.g. the origin of the website displayed in the AMP viewer.
 
 <h3 id="obtaining-randomized-response">Obtaining a randomized response</h3>
 

From 9f8600ff5c458a438d500da6f250244f9a8bdefc Mon Sep 17 00:00:00 2001
From: Nan Lin <80365263+linnan-github@users.noreply.github.com>
Date: Thu, 30 Jan 2025 14:16:40 -0500
Subject: [PATCH 7/8] Fix typo

---
 index.bs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/index.bs b/index.bs
index b82ff582c7..d718569344 100644
--- a/index.bs
+++ b/index.bs
@@ -1877,7 +1877,7 @@ To <dfn>check if cookie-based debugging is allowed</dfn> given a
 
 To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|:
 
-1. If applicable for [=implemenation-defined=] use cases, return the embedded origin.
+1. If applicable for [=implementation-defined=] use cases, return the embedded origin.
 1. Otherwise, return |node|'s [=node navigable=]'s [=navigable/top-level traversable=]'s
     [=navigable/active document=]'s [=origin=].
 

From 3e6bf341c76e178193d2949ee7c7d5220740aca2 Mon Sep 17 00:00:00 2001
From: Nan Lin <80365263+linnan-github@users.noreply.github.com>
Date: Thu, 30 Jan 2025 14:23:33 -0500
Subject: [PATCH 8/8] Update example

---
 index.bs | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/index.bs b/index.bs
index d718569344..9fab24b8fd 100644
--- a/index.bs
+++ b/index.bs
@@ -1882,8 +1882,9 @@ To obtain the <dfn export for=node>context origin</dfn> of a [=node=] |node|:
     [=navigable/active document=]'s [=origin=].
 
 Note: The user agent may return the embedded origin to allow separate limits
-for specific use cases. Embedded origin could be the effective top-level origin,
-e.g. the origin of the website displayed in the AMP viewer.
+for specific use cases. Embedded origin could be the effective top-level origin.
+For example, https://foo.example/bar.example is embedded within https://foo.example,
+where https://foo.example is the top-level origin and https://bar.example is the embedded origin.
 
 <h3 id="obtaining-randomized-response">Obtaining a randomized response</h3>