- From: Marcos Caceres <notifications@github.com>
- Date: Mon, 12 Jan 2015 18:53:47 -0800
- To: w3c/manifest <manifest@noreply.github.com>
- Message-ID: <w3c/manifest/commit/a2e8c31ecda1ca7d5673a02e08698e5cf64b5df2/9253043@github.com>
> I guess what I'm asking is, should there be something in the spec about sandboxing app environments, because otherwise it's not clear that implementaters are required to keep permissions and data separate by app scope in addition to just the origin? @skddc, you are correct. I don't think we have a good story for this yet. In iOS, for instance, when you add to homescreen, the web app no longer shares any permissions, cookies, or storage with Safari - so the identity ends up working like a synthetic origin. I think FxOS does the same. This can be frustrating to users, because they might have to log into a website again after an app gets added to the homescreen. It's not the end of the world - just annoying. On the other hand, I think Chrome on Android does share cookies, permissions, and storage when you add to homescreen. Unfortunately, I don't have my Android tablet with me right now so I can't confirm this. --- Reply to this email directly or view it on GitHub: https://github.com/w3c/manifest/commit/a2e8c31ecda1ca7d5673a02e08698e5cf64b5df2#commitcomment-9253043
Received on Tuesday, 13 January 2015 02:54:17 UTC