[sensors] What's the rationale of moving security checks outside of normative requirements? from Tobie Langel via GitHub on 2017-09-26 (public-device-apis-log@w3.org from September 2017)

From: Tobie Langel via GitHub <sysbot+gh@w3.org>
Date: Tue, 26 Sep 2017 08:08:07 +0000
To: public-device-apis-log@w3.org
Message-ID: <issues.opened-260529190-1506413275-sysbot+gh@w3.org>

tobie has just created a new issue for https://github.com/w3c/sensors:

== What's the rationale of moving security checks outside of normative requirements? ==
My understanding of https://github.com/w3c/sensors/pull/280 is that previously normative security checks are now examples that user agents are free to implement. What's the rationale behind this? I can't find any documented reason to make these changes. This seems like it's going to hurt end user security, and make it harder for developers to build consistent experiences across user agents. And I'm not sure I understand what benefits there is to doing so. Where can I find the arguments behind these changes? 

Please view or discuss this issue at https://github.com/w3c/sensors/issues/287 using your GitHub account

Received on Tuesday, 26 September 2017 08:07:58 UTC