W3C home > Mailing lists > Public > public-geolocation@w3.org > July 2020

Re: [geolocation-api] Explicitly limit permission lifetimes (#47)

From: pes via GitHub <sysbot+gh@w3.org>
Date: Wed, 01 Jul 2020 16:31:21 +0000
To: public-geolocation@w3.org
Message-ID: <issue_comment.created-652522781-1593621080-sysbot+gh@w3.org>
My straw proposal does not specify any UI. The ability to limit the permission lifetime could be done in any number of ways (in the "permission prompt, a global setting for the profile, etc etc")

But capturing the _intent_ is not a substitute here.  The spec requires / MUSTs that implementors provide sites with powerful useful-but-privacy-threatening capabilities.  The spec should then also require that implementors make sure those capabilities aren't misused or harm people through readily foreseeable situations.

Recording the intent sounds like a great thing to do too, and I'm happy to concede that my straw proposal may not be the best way to solve the problem. But _only_ capturing the intent does not solve the problem or address the issue either.

-- 
GitHub Notification of comment by pes10k
Please view or discuss this issue at https://github.com/w3c/geolocation-api/issues/47#issuecomment-652522781 using your GitHub account
Received on Wednesday, 1 July 2020 16:31:22 UTC

This archive was generated by hypermail 2.4.0 : Wednesday, 1 July 2020 16:31:23 UTC