Re: [mediacapture-main] Iframe sandboxing options for gUM from Philip Jägenstedt via GitHub on 2016-07-08 (public-media-capture-logs@w3.org from July 2016)

From: Philip Jägenstedt via GitHub <sysbot+gh@w3.org>
Date: Fri, 08 Jul 2016 11:41:35 +0000
To: public-media-capture-logs@w3.org
Message-ID: <issue_comment.created-231339319-1467978093-sysbot+gh@w3.org>

Hmm, it strikes me that having both an allow* attribute, [permission 
delegation](https://noncombatant.github.io/permission-delegation-api/)
 and a permissions UI that could handle requests from cross-origin 
iframes might end up fairly complicated.

This issue is older than 
https://noncombatant.github.io/permission-delegation-api/, so is there
 any chance that permission delegation could be the *only* way for 
cross-origin iframes to use gUM? 
https://github.com/noncombatant/permission-delegation-api/issues/21 
talk about the interaction and it sounds like @raymeskhoury considers 
these orthogonal concerns, but in a case where we don't yet have the 
allow* attribute shipping I wonder if it's really a good mix.

-- 
GitHub Notification of comment by foolip
Please view or discuss this issue at 
https://github.com/w3c/mediacapture-main/issues/268#issuecomment-231339319
 using your GitHub account

Received on Friday, 8 July 2016 11:41:43 UTC